The Password or Forgotten User ID Screen lets you configure the forgotten password or forgotten user ID tasks. This screen has the following fields:
Defines the name of the screen.
An identifier that is unique within the task. It can contain ASCII characters (a-z, A-Z), numbers (0-9), or underscore characters, beginning with a letter or underscore. The tag is used for setting data values through XML documents or HTTP parameters.
Defines text that will appear above the area where users supply identification information.
Specifies an Identify screen that includes the attributes (such as UserID) that users must enter.
Defines text that will appear above the area where users supply verification information.
Specifies an Identify screen that includes verification question and answer pairs.
Defines text that will appear above the area where users supply verification information, if verification questions are presented on separate screens.
Specifies an Identify screen that includes verification question and answer pairs, if verification questions are presented on separate screens.
Enter the number of questions that users must answer to verify their identity.
The number of incorrect answers a user can provide before CA Identity Manager records a verification failure.
Note: CA Identity Manager records an incorrect answer only after a user exceeds the Verification Page Attempt Limit. For example, if the Verification Page Attempt Limit is 2, CA Identity Manager records an incorrect answer if the user answers incorrectly 3 times.
The amount of time a user has to answer all of the questions on a page.
The number of times a user can attempt to answer the questions on a page.
If only one question appears per page, the Verification page attempt limit is the number of times a user can try to answer that question.
Note: Specify 0 for the options that do not apply.
The number of consecutive times a user can fail the verification process before he is locked out of the task. CA Identity Manager locks the user out of the task, and optionally disables the user’s account, if the user attempts to verify his identity after the Failed Attempt Limit has been reached. For example, if the failed attempt limit is 3, the user is locked and disabled on the fourth failed attempt.
Note: The attribute you specify must be defined in the directory configuration file (directory.xml) for the CA Identity Manager environment.
If selected, CA Identity Manager disables a user’s account in addition to locking the task when the failed attempt limit is exceeded.
Note: The user account is not disabled until the user fails to verify his identity after the Failed Attempt Limit has been reached.
The number of days that a user is locked out of the task if she exceeds the failed attempt limit.
The number of days that users must wait before using the task, after a successful attempt.
Select the attribute that CA Identity Manager will use to track verification attempts.
Select one or more reasons such that the user is allowed to reset the password.
For more information on configuring forgotten password or forgotten User ID tasks, see the Administration Guide.
Copyright © 2015 CA Technologies.
All rights reserved.