The ArcotID PKI Client behavior is determined by the settings that can be configured in four main ways:
The precedence logic feature formalizes the precedence rules of how the run-time value of each setting is determined from the four sources of configuration information.
Note: The precedence rules themselves cannot be customized.
In general, the highest priority preferences are the issuer preferences. The issuer preferences specify the allowable behaviors for the ArcotID PKI. If an issuer preference is not set, then the preference is for the application preferences and then the user preferences.
The precedence rules are described in the following table:
|
Features |
Client Configuration |
Issuer Preferences |
Application Preferences |
User Preferences |
|---|---|---|---|---|
|
Storage type for ArcotID PKI storage during download |
Default values |
Allowable values |
Refinement of allowable or default values. Decider if no settings on ArcotID PKI |
Refinement of allowable values.
|
|
Location of ArcotID PKI (during usage) |
Default value |
|
Overrides default value using credential filtering attributes |
|
|
Temporary or Permanent Download during Roaming |
Permanent allowed only on some clients |
Allowable values
|
Refinement of allowable or default values. Decider if no settings on ArcotID PKI |
Refinement of allowable values |
|
Device Locking |
Enabled on some clients only |
Allowable mechanisms for device locking |
Refinement of allowable or default values. Decider if no settings on ArcotID PKI |
N/A* |
|
ArcotID PKI Image displayed (applicable only when ATM GUI is used) |
Default value |
Overrides default value when present |
N/A*
|
N/A*
|
|
PIN PAD scramble method |
Default value |
Overrides default value |
Overrides ArcotID PKI values, but only within the set of possible values allowed inside the ArcotID PKI |
|
*The feature is not applicable.
|
Copyright © 2013 CA Technologies.
All rights reserved.
|
|