Specifications
The configuration of authentication methods is done within the policy (policies).
10.2.5 Policies
Policies specify various settings that affect the User authentication process. Each
authentication request is handled according to a Policy that is identified by the
applicable Component record. Components can be radius clients, authentication
servers or Citrix web interfaces.
10.2.6 DIGIPASS Self Assign
Allows users to assign DIGIPASS to themselves by providing the serial number of the
DIGIPASS, the static password and the OTP.
10.2.7 DIGIPASS Auto Assign
Allows automatic assignment of the first available DIGIPASS to a user on user
creation.
10.2.8 Grace Period
Supplies a user with a certain amount of time (7 days by default) between assignment
of a DIGIPASS and the user being required to log in using the OTP. The Grace Period
will expire automatically on first successful use of the DIGIPASS.
10.2.9 Virtual DIGIPASS
Virtual DIGIPASS uses a text message to deliver a One Time Password to a User’s
mobile phone. The User then logs in to the system using this One Time Password.
Primary Virtual DIGIPASS
A Primary Virtual DIGIPASS is handled similarly to a standard physical DIGIPASS. It is
imported into the VACMAN Middleware database, assigned to a User, and treated by
the VACMAN Middleware database as any other kind of DIGIPASS.
Backup Virtual DIGIPASS
The Backup Virtual DIGIPASS feature simply allows a User to request an OTP to be
sent to their mobile phone. It is not treated as a discrete object by VACMAN
Middleware, and is not assigned to Users, only enabled or disabled. It can be enabled
for Users with another type of DIGIPASS already assigned, and used when the User
does not have their DIGIPASS available.
DIGIPASS Authentication for WatchGuard Firebox - Integration Guideline V1.0
© 2007 VASCO Data Security. All rights reserved. Page 51 of 54