CA AuthMinder Administration Guide › Managing Global AuthMinder Configurations › Understanding AuthMinder Profiles and Policies › Authentication Policies

Authentication Policies

AuthMinder supports multiple authentication mechanisms. Every time an end user attempts to authenticate against AuthMinder, the authentication process is controlled by a set of rules (or checks) referred to as authentication policies. For example, these rules can be configured to track the number of failed authentication attempts allowed before credential lockout, and user status before authentication.

AuthMinder can generate the following types of tokens:

• Native Tokens: AuthMinder tokens, can be used multiple times before they expire.
• One-Time Tokens: Can be used only once before they expire.
• SAML Tokens: Can be interpreted by any other authentication system. AuthMinder supports versions 1.1 and 2.0 of Secure Assertion Markup Language (SAML.)

As in case of credential profiles, AuthMinder is also shipped with a default policy for each credential. You can also create multiple profiles, each with a unique name, for all credential types. You can then set one profile as default.