One-Time Passcode IdP Adapter settings reference
Field descriptions for the One-Time Passcode IdP Adapter configuration page.
Field | Description |
---|---|
Device Selection |
|
Preferred Delivery Method Attribute |
The source attribute that contains the user’s preferred one-time passcode (OTP) delivery method. If the user has a valid preferred delivery method attribute, it overrides the Automatic and User choice options above. For example, you enter When Alice signs on, the adapter checks her |
Attribute Source |
The source of the attribute in the Preferred Delivery Method Attribute field and the attributes listed in the Contact Attribute column of the Notification Delivery Methods table. Select a datastore, or select Chained Attributes if the adapter receives the attributes from earlier in the authentication flow. |
Search String |
The string that the adapter uses to search the datastore to find the user.
The |
Base DN |
The base DN that the adapter uses when connecting to an LDAP datastore. |
Test User ID |
The user ID used to test the configuration on the Actions tab. |
Failure Mode |
This setting determines whether the adapter should block the user’s sign-on attempt or bypass the OTP requirement when the adapter can’t find the user or contact information in the datastore or chained attributes. |
Field | Description | ||
---|---|---|---|
OTP Length |
Length of the OTP generated by the adapter. The default value is |
||
Max OTP Attempts |
The maximum number of times the user is allowed to try entering the OTP before authentication fails. The default value is |
||
Max OTP Resends |
The maximum number of times the user is allowed to request a specific OTP to be sent. After reaching this limit, the The default value is |
||
Show Success Screens |
Determines whether the adapter shows an authentication success screen to the user. This checkbox is selected by default. |
||
Show Error Screens |
Determines whether the adapter shows an authentication error screen to the user. This checkbox is selected by default. |
||
OTP Generator Field |
A read-only value used by the adapter.
This field is hidden in PingFederate 10.0 and later. |
||
LDAP Search Scope |
When the attribute source is an LDAP datastore, this setting determines the scope of the user search.
|