Chat now with support
Chat with Support

Identity Manager 9.3 - Web Application Configuration Guide

About this guide Managing the API Server Configuring API projects and web applications
General configuration Configuring the Administration Portal Configuring the Application Governance Module Configuring the Password Reset Portal Configuring the Web Portal
Configuring departments Configuring address books Ansichten konfigurieren Configuring application roles Configuring the Application Governance Module Configuring attestation Configuring authentication by accepting the terms of use Configuring request functions Configuring delegation Configuring your own API filter Configuring your own filters Configuring recommendations for adding entitlements to objects Configuring devices Configuring business roles Configuring the help desk module/tickets Configuring hyperviews Configuring identities Configuring password questions Configuring cost centers Configuring service items Program functions for the Web Portal Configuring software Configuring locations Configuring statistics Configuring system roles Skip table sorting Configuring team roles Configuring the four eyes principle for issuing a passcode. Configuring WebAuthn security keys
Configuring the Operations Support Web Portal
Recommendations for secure operation of web applications

Excluding authentication modules

You can exclude certain authentication modules so that users cannot select them for authentication.

Required configuration keys:

  • Excluded authentication modules (ExcludedAuthentifiers): Specify which authentication modules cannot be used.

To exclude an authentication module

  1. Log in to the Administration Portal (see Logging in to the Administration Portal).

  2. In the navigation, click Configuration.

  3. On the Configuration page, in the Show configuration for the following API project drop-down, select the Web Portal API project.

  4. Expand the Excluded authentication modules configuration key.

  5. You can perform the following actions:

    • To exclude an authentication module, click Add new and select the relevant authentication module from the selection list.

    • To include an authentication module again, click (delete) next to the corresponding authentication module.

  6. Click Apply.

  7. Perform one of the following actions:

    • If you want to apply the changes locally only, click Apply locally.

    • If you want to apply the changes globally, click Apply globally.

  8. Click Apply.

Configuring CAPTCHAs

To improve the security and reliability of your web applications, configure CAPTCHAs for logging in to these web applications. They allow real users to be distinguished from bots.

Detailed information about this topic

Enabling and disabling CAPTCHA login protection

To prevent login attempts by bots or automated requests, you can configure a CAPTCHA test to be required after repeated failed login attempts.

Required configuration keys:

  • CAPTCHA login protection (EnableLoginProtection): Specifies whether CAPTCHA tests are required if repeated login attempts are detected.

To enable or disable the CAPTCHA login protection for all web applications

  1. Log in to the Administration Portal (see Logging in to the Administration Portal).

  2. In the navigation, click Configuration.

  3. On the Configuration page, in the Show configuration for the following API project drop-down, select the API Server API project.

  4. Expand the CAPTCHA login protection configuration key.

  5. Perform one of the following actions:

    • To enable CAPTCHA login protection, select the CAPTCHA login protection check box.

    • To disable CAPTCHA login protection, clear the CAPTCHA login protection check box.

  6. Click Apply.

  7. Perform one of the following actions:

    • If you want to apply the changes locally only, click Apply locally.

    • If you want to apply the changes globally, click Apply globally.

  8. Click Apply.

Configuring CAPTCHA fonts

You can specify which of the fonts stored on the API Server are to be used for generating CAPTCHAs.

Required configuration keys:

  • CAPTCHA fonts (CaptchaFonts): Specifies which fonts are used to generate CAPTCHAs.

To configure the fonts to use for generating CAPTCHAs

  1. Log in to the Administration Portal (see Logging in to the Administration Portal).

  2. In the navigation, click Configuration.

  3. On the Configuration page, in the Show configuration for the following API project drop-down, select the API Server API project.

  4. Expand the CAPTCHA fonts configuration key.

  5. In the Value field, enter a comma delimited list of the fonts that can be used for generating CAPTCHAs.

  6. Click Apply.

  7. Perform one of the following actions:

    • If you want to apply the changes locally only, click Apply locally.

    • If you want to apply the changes globally, click Apply globally.

  8. Click Apply.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating