Version: 8.2511.x.x RR

Security question - policy parameters

This page lists the policy parameters specific to security questions.

In addition to the policy parameters defined here, the parameters defined in the table in the chapter All credential types are also valid for security question credentials.

maxAnswers

Data type: int
Default: 3
Description: Maximum number of questions a user may select and answer.

maxAnswerDeviation

Data type: int
Default: 20
Description: Maximum allowed deviation when validating, relative to the length of the answer.

maxAnswerFailureCount

Data type: int
Default: 3
Description: Maximum number of subsequent failed authentications after which the provisioned answer may not be used again for any use case.

maxAnswerRevealCount

Data type: int
Default: 3
Description: Maximum number of reveals after which the provisioned answer may not be used again for any use case. A "reveal" denotes the process of showing the plain content of a user's answer to an admin, either via the web GUI or the web service. For example, a user calls the Helpdesk by telephone, and the Helpdesk reveals the answer to compare it to the oral statement of the user.

maxAnswerSuccessCount

Data type: int
Default: 3
Description: Maximum number of authentications after which the provisioned answer may not be used again for any use case.

minAnswers

Data type: int
Default: 1
Description: Minimum number of questions a user has to select and answer.

restrictModifyToOwner

Data type: boolean
Default: true
Description: If set to true, only the user/owner of the security question credential is allowed to add or modify answers. Deletion is still allowed for anybody who has permission to delete the credential.

Security question - policy parameters

maxAnswers​

maxAnswerDeviation​

maxAnswerFailureCount​

maxAnswerRevealCount​

maxAnswerSuccessCount​

minAnswers​

restrictModifyToOwner​