A user should have required access privileges to manage authenticators. Default privileges only allow to register an authenticator. |
The user page contains the information on the quantity of registered user authenticators and their parameters.
Enter the data for enrollment of selected authenticator and click “Save”.
Windows and actions required for enrollment vary for different authenticators. |
To configure authenticator lock, open "Login method lock” policy (Computer configuration/Policies/Administrative templates/Indeed ID/Server).
The policy applies to Indeed servers. It allows to configure automatic lock / unlock of authenticators.
If the policy is not configured or disabled, then authenticators are not locked.
Authenticator lock / unlock is performed according to the policy parameters.
Parameters:
The setting specifies the number of unsuccessful authentication attempts until the login method is blocked. The blocked method becomes unavailable until unlocked by administrator or until unlocking timeout expires. If this value is set to 0, then the login method is never blocked.
The setting specifies the timeout period in minutes the login method is blocked for. When this period expires, the login method is unlocked automatically. If timeout value is set to 0 for a login method, then the method remains locked until unlocked explicitly by administrator.
The parameter defines the number of minutes that must pass after unsuccessful login attempt before the locking counter is reset to 0. The admissible value range is from 1 to 99,999 minutes. If the number of authentication attempts until blocking is defined, then this reset interval must not exceed the value of "Login method unlocking timeout” parameter.
If the authenticator has been locked via group policy, then “Lock” icon is displayed in the right part of the authenticator panel.
To unlock, proceed as follows: