Troubleshooting guide

112 C: Glossary
RSA Authentication Manager 6.1 to 8.1 Migration Guide
dynamic seed provisioning
The automation of all the steps required to provide a token file to a device that hosts a
software token, such as a web browser, using the Cryptographic Token-Key
Initialization Protocol (CT-KIP).
e-mail notifications
Contain status information about requests for user enrollment, tokens, and user group
membership that is sent to users who initiated the request. For token requests, e-mail
notifications also contain information about how to download and activate tokens.
Request Approvers and Token Distributors receive e-mail notifications about requests
that require their action. See e-mail templates.
e-mail templates
Templates that administrators can use to customize e-mail notifications about user
requests for user enrollment, tokens, user group membership, or the on-demand
tokencode service. See e-mail notifications.
excluded words dictionary
A dictionary containing a record of words that users cannot use as passwords. It
prevents users from using common, easily guessed words as passwords.
fixed passcode
Similar to a password that users can enter to gain access in place of a PIN and
tokencode. The format for fixed passcodes is defined in the token policy assigned to a
security domain. An administrator creates a fixed passcode in a users authentication
settings page. Fixed passcodes can be alphanumeric and contain special characters,
depending on the token policy.
Global Catalog
A read-only, replicated repository of a subset of the attributes of all entries in an
Active Directory forest.
Global Catalog identity source
An identity source that is associated with an Active Directory Global Catalog. This
identity source is used for finding and authenticating users, and resolving group
membership within the forest.
identity attribute
Customer-defined attributes that are mapped to an existing customer-defined schema
element. They are always stored in the same physical repository as the user’s or user
group’s core attribute data. You can search, query, and report on these attributes. Each
identity attribute definition must map to an existing attribute in an LDAP directory or
RDBMS.
identity confirmation method
For risk-based authentication, an authentication method that can be used to confirm a
users identity.
identity source
A data store containing user and user group data. The data store can be the internal
database or an external directory server, such as Microsoft Active Directory.