Digipass Plug-In for IAS Product Guide - Vasco

More documents

Recommendations

Info

Digipass Plug-In for IAS Product Guide Policies 4.4.2 Show Effective Settings As the various levels of settings in Policy inheritance can get confusing, functionality is available which allows you to view the settings effective for a selected Policy, taking inherited settings into account. The text below shows the effective settings for the IAS Windows Self- Assignment Policy: Effective Policy Settings [Local/Back-End Authentication] : Local Authentication : Digipass/Password Back-End Authentication : If Needed Back-End Protocol : Windows : [User Accounts] : Dynamic User Registration : Yes Password Autolearn : No Stored Password Proxy : No Default Domain : User Lock Threshold : 0 [Windows Group Check] : Group Check Option : No Check Group List : [Digipass Assignment] : Assignment Mode : Self-Assignment Grace Period (days) : 0 Serial No. Separator : | Search up Organizational Unit Hierarchy : Yes [Digipass Settings] : Application Names : Application Type : No Restriction Digipass Types : PIN Changed Allowed : Yes [1-Step Challenge Response] : Enabled : No Challenge Length : 0 Challenge Check Digit : No [2-Step Challenge Response] : Request Method : Keyword Request Keyword : [Primary Virtual Digipass] : Request Method : None Request Keyword : [Backup Virtual Digipass] : Enabled : No Maximum Days : 0 Maximum Uses : 0 Request Method : KeywordPassword Request Keyword : otp [Digipass Control Parameters] : Identification Time Window : 20 Signature Time Window : 24 Event Window : 20 Initial Time Window : 6 Identification Threshold : 0 Signature Threshold : 0 Check Challenge Flag : 1 Level of Online Signature : 0 Allowed Inactive Days : 0 You will note that the settings listed above include those set in Policies from which the IAS Windows Self-Assignment Policy inherit. © 2005 VASCO Data Security Inc. 56
Digipass Plug-In for IAS Product Guide Policies 4.5 Pre-Loaded Policies These Policies are created for the IAS Plug-In on installation of the Digipass Plug-In for IAS. They provide an example for setting up Policies in a typical environment. Policy Name Parent Policy Base Policy - Globally applicable settings. In general, all other Policies should inherit from this, directly or indirectly. IAS Base Policy Base Policy Settings applicable to all IAS Plug-In Policies, including local authentication. In general, all other IAS policies should inherit from this, directly or indirectly. IAS Windows Auto- Assignment IAS Windows Self- Assignment IAS Base Policy IAS Base Policy Description Non-Default Settings IAS Plug-In model for Auto- Assignment with Dynamic User Registration, using Windows back-end authentication and a Windows group check. IAS Plug-In model for Self- Assignment with Dynamic User Registration, using Windows back-end authentication. User Lock Threshold = 3, PIN Change Allowed = Yes Challenge Request Method = Keyword (Note: the keyword is blank though) PVDP Request Method = Password BVDP Request Method = KeywordPassword BVDP Keyword = “otp” ITimeWindow = 100, EventWindow = 100 SyncWindow = 6, IThreshold = 0 Local Authentication = Digipass/Password Back-End Authentication = If Needed Back-End Protocol = Windows Dynamic User Registration = Yes Assignment Mode = Auto-Assignment Search up OU Path = Yes Grace Period = 7 Group Check Mode = Passthrough Group List = “Digipass Users” Back-End Authentication = If Needed Back-End Protocol = Windows Dynamic User Registration = Yes Assignment Mode = Self-Assignment Search up OU Path = Yes Serial No. Separator = “|” © 2005 VASCO Data Security Inc. 57
Page 1 and 2:
Digipass Plug-In for IAS IAS Plug-I
Page 3 and 4:
Digipass Plug-In for IAS Product Gu
Page 5 and 6: Digipass Plug-In for IAS Product Gu
Page 55: Digipass Plug-In for IAS Product Gu
Page 73: Digipass Plug-In for IAS Product Gu
show all

Digipass Plug-In for IAS Product Guide - Vasco

Create successful ePaper yourself

Delete template?

Save as template?