TID Local Authentication with Static Password (Policy)
The following is an overview of the relevant default settings of local authentication with static password with Intelligent Adaptive Authentication.
- Parent policy: TID Local Authentication (Policy)
|Parameter name||Default value||Description|
|local_auth||DIGIPASS or Password||
When local authentication is used, there are two factors that determine whether an authenticator is used for authentication – any policy restrictions on authenticator types and/or applications that can be used and whether the user account has any assigned authenticator that meets the restrictions. For example, if the policy requires a certain authenticator type, but the user has a different type, they cannot use the authenticator for authentication under that policy.
This setting also affects the provisioning registration process.
Maximum Age in Days
This specifies the maximum amount of time in days during which a local static password is valid. After this time, the password expires. Applies to the local authentication mode DIGIPASS or Password only.
If set to 0, the local static password never expires. Select this to disable local static password expiration if you are using back-end authentication, and to rely on the back-end system to enforce password expiration.
Possible values: 0–9999
Minimum Age in Days
This specifies the minimum amount of time in days a static password must be used before it can be changed. It applies to the local authentication mode DIGIPASS or Password only.