Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
Digipass Plug-In for SBR Administrator Reference - Vasco
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
<strong>Digipass</strong> <strong>Plug</strong>-<strong>In</strong> <strong>for</strong> <strong>SBR</strong> <strong>Administrator</strong> <strong>Reference</strong> Field Listings<br />
7 Field Listings<br />
7.1 User Property Sheet<br />
Table 30: User Fields<br />
Field Name in<br />
Administration<br />
<strong>In</strong>terfaces<br />
New Password<br />
Confirm Password<br />
Description<br />
These fields are used to modify the static password that is stored in the <strong>Digipass</strong> User<br />
account. If they are left blank, no modification is made.<br />
Local Authentication Specifies whether authentication requests <strong>for</strong> the User account will be handled by the <strong>SBR</strong><br />
<strong>Plug</strong>-<strong>In</strong> using Local Authentication (see the Authenticating Users section in the Product<br />
Guide <strong>for</strong> more details on Local Authentication and Back-End Authentication).<br />
Normally, this field will be Default, meaning that the Policy applicable to the authentication<br />
request determines the setting. This field on the <strong>Digipass</strong> User account is used to override<br />
the Policy setting <strong>for</strong> special cases.<br />
When Local Authentication is used, there are two factors that determine whether <strong>Digipass</strong><br />
authentication is used – any Policy restrictions on <strong>Digipass</strong> Types and/or Applications that<br />
can be used and whether the <strong>Digipass</strong> User account has any assigned <strong>Digipass</strong> that meet the<br />
restrictions. For example, if the Policy requires a DP300 and the User just has a DP700, they<br />
cannot use <strong>Digipass</strong> authentication under that Policy.<br />
Options:<br />
Back-End<br />
Authentication<br />
Default Use the setting of the effective Policy.<br />
None The <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> will not carry out Local Authentication <strong>for</strong> this User<br />
account. They may be handled using Back-End Authentication, or not<br />
handled at all by the <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong>.<br />
<strong>Digipass</strong>/Password The <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> will always carry out Local Authentication <strong>for</strong> this User,<br />
using <strong>Digipass</strong> authentication if possible, otherwise the static password.<br />
Back-End Authentication may also be utilized.<br />
<strong>Digipass</strong> Only The <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> will always carry out Local Authentication <strong>for</strong> this User,<br />
using <strong>Digipass</strong> authentication. If <strong>Digipass</strong> authentication is not possible,<br />
the user cannot log in. Back-End Authentication may also be utilized.<br />
Specifies whether authentication requests <strong>for</strong> the User account will be handled by the <strong>SBR</strong><br />
<strong>Plug</strong>-<strong>In</strong> using Back-End Authentication (see the Authenticating Users section in the<br />
Product Guide <strong>for</strong> more details on Local Authentication and Back-End Authentication).<br />
Normally, this field will be Default, meaning that the Policy applicable to the authentication<br />
request determines the setting. This field on the <strong>Digipass</strong> User account is used to override<br />
the Policy setting <strong>for</strong> special cases.<br />
Options:<br />
Default Use the setting of the effective Policy.<br />
None Back-End Authentication will not be used.<br />
If Needed The <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> will utilize Back-End Authentication but only in certain<br />
cases:<br />
Dynamic User Registration<br />
Self-Assignment<br />
Password Autolearn<br />
Requesting a Challenge or Virtual <strong>Digipass</strong> OTP, when the Request<br />
Method includes a Password<br />
Static password authentication, when verifying a Virtual <strong>Digipass</strong><br />
password-OTP combination or during the Grace Period<br />
Always The <strong>SBR</strong> <strong>Plug</strong>-<strong>In</strong> will utilize Back-End Authentication <strong>for</strong> every<br />
authentication request.<br />
Disabled Specifies whether a <strong>Digipass</strong> User account is enabled or disabled. If disabled, authentication<br />
© 2006 VASCO Data Security <strong>In</strong>c. 82