Oracle® Fusion Middleware Administrator's Guide for Oracle Adaptive Access Manager Release 11g (11.1.1) Part Number E14568-02 |
|
|
View PDF |
This appendix provides essential properties used by Oracle Adaptive Access Manager.
Action Override
The Action Override feature is turned off by default. To enable action overrides, set the following property to "true":
vcrypt.tracker.rules.allowControlledActions
Authenticator Phrase
To customize the phrase in the virtual authentication device, set the following parameter:
bharosa.user.noun.list
Autolearning
To enable autolearning properties:
Set vcrypt.tracker.autolearning.use.auth.status.for.analysis
and vcrypt.tracker.autolearning.use.tran.status.for.analysis
properties to true.
Ensure that vcrypt.tracker.autolearning.enabled
is set to true.
This property must always be set to true. It is like a "master (on/off) switch" for autolearning.
Set the following properties to true:
vcrypt.tracker.autolearning.use.auth.status.for.analysis
This property must be set to true for the authentication patterns to work. Authentication patterns are the patterns that analyze the data related to authentication (login) related information only.
vcrypt.tracker.autolearning.use.tran.status.for.analysis
This property must be set to true for the transaction-related patterns to work. Transaction related patterns are the one that analyze the transaction related data for autolearning. An example is a pattern that profiles users who are performing wire transfer operations.
If the properties do not exist, create them.
Case in Username
If you want the username to be in lowercase, set bharosa.uio.default.username.case.sensitive
to false.
Configurable Actions
To enable the configurable actions feature, set dynamicactions.enabled
to true.
Enumerations
For the enumerations to be listed in the Properties Editor, you must set the following property to false:
bharosa.config.ui.list.filter.enum=false
Expiry Behavior for CSR Cases
To set "expiry" behavior for CSR cases (default setting), modify the following properties:
customercare.case.expirybehavior.enum.csrcase.behavior = expiry customercare.case.expirybehavior.enum.csrcase.label = Expired customercare.case.expirybehavior.enum.csrcase.durationInHrs = 24 customercare.case.expirybehavior.enum.csrcase.resetonaccess = false
To disable the "expiry" behavior for CSR cases, modify the following property:
customercare.case.expirybehavior.enum.csrcase.behavior = none
KBA
Ensure the bharosa.kba.active
property is set to true.
The "Questions user will register" setting should be between 3 and 7. This provides enough questions to offer good security but does not over burden a user's memory. The basic industry standard for KBA is 3 registered questions.
The max and min limits are configurable through the following properties.
bharosa.config.type.kba_config.enum.regQuestionsCount.validation.minValue=3 bharosa.config.type.kba_config.enum.regQuestionsCount.validation.maxValue=7
Proxy Mode Setting
Out of box, OAAM Server is configured to be in non-proxy mode with the flag bharosa.uio.proxy.mode.flag
set to false by default.
The user must explicitly configure OAAM Server to be used in proxy mode.
Scheduler
To enable scheduler by default in OAAM Admin, the following property should be set to true:
vcrypt.reports.scheduler.activate
property
Transactions in Session Details
Before you can view transactions in the Session Details page, you must set the property to show transactions to true.
bharosa.trackeradmin.show.transaction.detail=true
Setting the property to false turns off the display for transactions.
Out-of-the-box Jobs include Monitor data rollup.
OTP Properties and their default values are listed as follows:
Challenge Availability
bharosa.uio.default.challenge.type.enum.ChallengeQuestion.available = true
bharosa.uio.default.challenge.type.enum.ChallengeEmail.available = true
bharosa.uio.default.challenge.type.enum.ChallengeSMS.available = true
Challenge Devices (DeviceKeyPadFull, DeviceKeyPadAlpha, DeviceTextPad, DeviceQuestionPad, DevicePinPad, DeviceHTMLControl)
bharosa.uio.default.ChallengeQuestion.authenticator.device=DeviceQuestionPad
bharosa.uio.default.ChallengeSMS.authenticator.device=DevicePinPad
bharosa.uio.default.ChallengeEmail.authenticator.device=DevicePinPad
Contact Info Inputs Enum
bharosa.uio.default.userinfo.inputs.enum.mobile=0
bharosa.uio.default.userinfo.inputs.enum.mobile.name=Mobile Phone
bharosa.uio.default.userinfo.inputs.enum.mobile.description=Mobile Phone
bharosa.uio.default.userinfo.inputs.enum.mobile.inputname=cellnumber
bharosa.uio.default.userinfo.inputs.enum.mobile.inputtype=text
bharosa.uio.default.userinfo.inputs.enum.mobile.maxlength=15
bharosa.uio.default.userinfo.inputs.enum.mobile.required=true
bharosa.uio.default.userinfo.inputs.enum.mobile.order=1
bharosa.uio.default.userinfo.inputs.enum.mobile.enabled=true
bharosa.uio.default.userinfo.inputs.enum.email=1
bharosa.uio.default.userinfo.inputs.enum.email.name=Email Address
bharosa.uio.default.userinfo.inputs.enum.email.description=Email Address
bharosa.uio.default.userinfo.inputs.enum.email.inputname=email
bharosa.uio.default.userinfo.inputs.enum.email.inputtype=text
bharosa.uio.default.userinfo.inputs.enum.email.maxlength=40
bharosa.uio.default.userinfo.inputs.enum.email.required=true
bharosa.uio.default.userinfo.inputs.enum.email.order=2
bharosa.uio.default.userinfo.inputs.enum.email.enabled=true
Contact info preferences
bharosa.uio.default.userpreferences.userinfo.enabled=false
Contact info registration
bharosa.uio.default.register.userinfo.enabled=false
PIN Generation
bharosa.uio.otp.generate.code.length = 5
bharosa.uio.otp.generate.code.characters = 1234567890