The installation process also creates a policy named Service Provider Policy This policy uses the default Identity Manager account and password policies but provides the following customized secondary authentication policy options:
The policy is valid for the Service Provider End User Interface only.
The maximum number of failed login attempts is 3.
The default authentication questions are “What is your favorite color?” and “What is your favorite movie?”
To be authenticated on the Forgot Username or Forgot Password pages, the user must answer all the questions correctly.
The Service Provider Policy is defined in the $WSHOME/sample/spePolicy.xml file.