Sample Service Provider Policy

The installation process also creates a policy named Service Provider Policy This policy uses the default Identity Manager account and password policies but provides the following customized secondary authentication policy options:

• The policy is valid for the Service Provider End User Interface only.

• The maximum number of failed login attempts is 3.

• The default authentication questions are “What is your favorite color?” and “What is your favorite movie?”

• To be authenticated on the Forgot Username or Forgot Password pages, the user must answer all the questions correctly.

The Service Provider Policy is defined in the $WSHOME/sample/spePolicy.xml file.