| |||||||||||||
For example, when you import DIGIPASS 280 token objects and select the OTP1 check box while leaving the OTP2 check box cleared, then the token users should generate one-time passwords by pressing the OTP1 button on their DIGIPASS 280 tokens. In this scenario, pressing the OTP2 button will generate invalid one-time passwords. | |||||||||||||
Specify the Active Directory container in which you want to store the token objects being imported. Click the Select button to browse for and select the container.
The default container is Defender | Tokens.
| |||||||||||||
2 |
3 |
| |||||||
Token The user must use a token response to authenticate.
Defender password The user must enter a valid Defender password to authenticate.
Active Directory password The user must enter a valid Active Directory password to authenticate.
Token with Defender password The user must enter a token response followed by a valid Defender password to authenticate.
Defender password with token The user must enter a valid Defender password followed by a token response to authenticate.
Token with Active Directory password The user must enter a token response followed by a valid Active Directory password to authenticate.
Active Directory password with token The user must enter a valid Active Directory password followed by a token response to authenticate.
Active Directory password (rollout mode) The user can authenticate with the Active Directory password until a security token is assigned or registered to the user’s Active Directory account. After a security token has been assigned or registered for the user, the user must submit the token response to authenticate. For more information about this option, please contact Dell Software support.
GrIDsure token (auto-enrollment mode) The user must authenticate by using a GrIDsure Personal Identification Pattern (PIP). During the first authentication, the user is prompted to configure a GrIDsure PIP to be used for subsequent authentications.
| |||||||
Specify parameters for the additional authentication method you want the user to use. If you want to disable the additional authentication method, from the Method list, select None.
Other options in the Method list are identical to those available in the Select an authentication method step of the wizard. | |||||||
If you select the Lockout Windows account after indicated violations check box, this causes the user’s Windows account to be locked out after the specified number of failed logon attempts has been exceeded by the user. This option requires the Windows account lockout option to be enabled in Domain Security Policy or Domain Controller Security Policy.
| |||||||
|
© 2021 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy