...

These configurations are available in the eidm2.properties file.

methods.protected

This property defines the accepted authentication methods for user authentication. In other words, this is list of authentication methods used in this installation.

...

methods.protected = methods.password, methods.sms, methods.otp

Ubisecure Password

methods.password

This property defines the password authentication method to be used.

...

methods.password = password.2

password.minLength

This property defines the minimum length of a password.

...

password.minLength = 8

password.pattern.N

The system only accepts passwords that match all the regular expression patterns specified. If you add a new pattern to the list, use the next successive positive integer as its identification number. For example password.pattern.3. The password rules you define here need to be at least as strict as any later rules for the password. Later rules may be defined for example in the password method configuration or in the LDAP directory where the passwords will be eventually stored.

...

# Only accept passwords that contain characters from at least 3 of the
# following 4 rules:
# 1) Upper case letters
# 2) Lower case letters
# 3) Numbers
# 4) Non-alpha numeric
password.pattern.1 = ^(?:(?=.*[a-z\\xE4\\xF6\\xE5])(?:(?=.*[A-Z\\xC4\\xD6\\xC5])(?=.*[\\d[^\\p{L}\\p{Nd}]])|(?=.*[^\\p{L}\\p{Nd}])(?=.*\\d))|(?=.*[^\\p{L}\\p{Nd}])(?=.*[A-Z\\xC4\\xD6\\xC5])(?=.*\\d)).*$
password.pattern.2 =

passwordrecovery.protection.configuration

This property defines the protection configuration that is used in password recovery. Only the method list is relevant from the protection configuration related to password recovery.

...

passwordrecovery.protection.configuration = 1

Ubisecure OTP Printout

methods.otp

This property defines the name of the Ubisecure OTP Printout authentication method to be used. If it is left empty then no Ubisecure OTP Printout method will be in use.

...

methods.otp = ubikey.otp.1

methods.otp.table

If the user information is stored in Active Directory, Ubisecure Directory must contain an OTP table under the Ubisecure OTP Printout method. This property defines the name (that is, CN) of the OTP table.

...

methods.otp.table = otp.table.1

Ubisecure SMS

methods.sms

This property defines the Ubisecure SMS authentication method to be used for SMS authentication. If it is left empty then no Ubisecure SMS method will be is use.

...

methods.sms = ubikey.sms.1

methods.sms.gateway

This property defines the URL for the SMS gateway. The URL will be used as is, except for substituting {mobile} and {challenge} for the mobile number and the challenge to be sent by SMS to the mobile number, respectively.

...

methods.sms.gateway = http://smsgw/sendsms?PhoneNumber={mobile}&text={challenge}&etc=123

TUPAS

methods.tupas

This property defines the enabled Tupas authentication methods as a comma-separated list. If it is left empty then no TUPAS methods will be in use.

...

methods.tupas = tupas.op.1, tupas.nordea.1,\
tupas.danske.1, tupas.sppop.1, tupas.tapiola.1

Ubisecure Windows Authentication Provider

methods.winap

This property defines the name of the Ubisecure Windows Authentication Provider authentication method to be used. This enables the possibility to use Windows SSO with Ubisecure CustomerID. Please consult the document Ubisecure Windows Authentication Provider for instructions on how to install Ubisecure Windows AP to Ubisecure SSO. Add methods.winap to the methods.protected property to make it possible to actually use it with Ubisecure CustomerID.

...

methods.winap = windows.localdomain.1

External Methods

methods.external

This property defines the names of external authentication methods (not TUPAS methods) as a comma-separated list. If it is left empty then no external authentication methods will be in use.

...