All credentials

The TIDMA_CREDENTIAL table lists all attributes that are valid for all credential types.

There are also attributes that are only used by certain credential types, for example, the reset_count attribute for password credentials. These attributes are listed in the following chapters.

Database table TIDMA_CREDENTIAL

DB attribute	Java data type (max. size), defaults	Description
auto_transition_date	Date, nullable	The execution date of the next automatic state transition.
auto_transition_state_id	Long, nullable	The target state_id of the next automatic state transition.
context	String(100), nullable	Context of the credential. This is used for context passwords and as a label for OATH credentials.
credential_id	Long, not NULL	Primary key (uniquely identifies each individual credential)
credential_type_id	Long, not NULL	The credential type of the credential.
extid	String(50), not NULL	External identifier
last_change	Date, not NULL	Date of last change of the credential's content.
modificationComment	String(1000), nullable	Comment of related add/update/delete action.
name	String(100), nullable	Name of the credential. Only used for OTP credentials.
policy_configuration_id	Long, nullable	The policy configuration that belongs to the credential. Foreign key that links to information in the table TIDMA_POLICY_CONFIGURATION. Only null for credentials whose type has no corresponding policy type (that is, for Kerberos, SecurID, Safeword, FIDO UAF and FIDO2).
reset_count	Integer, not NULL	Number of times the credential has been reset.
state_change_detail	String(1000), nullable	Free text details about the last change of state.
state_change_reason_cd	Integer, nullable	Reason code for the last change of state. Supported reason codes are: 1: initialized 2: activated 3: too-many-login-failures 4: reset-by-admin 5: changed-by-admin 6: changed-by-user 7: logged-in-with-strong-cred 8: cert-uploaded 9: policy-check-failed 10: renewal 11: reset 12: cert-revoked 13: unlock 14: changed-by-batchjob
state_id	Long, not NULL	Possible states of the credentials: 1: initial 2: active 3: temporarily locked 4: locked 5: reset code 6: changed by an administrator 7: disabled 8: archived The set of available states depends on the credential's type.
user_id	Long, not NULL	The user to which the credential belongs. Foreign key that links to information in the table TIDMA_USER
valid_from	Date, not NULL	The date when the credential becomes/became valid.
valid_to	Date, not NULL	The date when the credential becomes/became invalid.
value	String(4000), not NULL	Value of the credential. E.g., for a password, the value could be myPassword1, or whatever your password is.
value_plain	String(4000), nullable	Helper field. Always empty.