Restricted Answers Tab
The Restricted Answers tab allows administrators to define illegal Challenge Questions Answers and associate the illegal answer to a specific RapidIdentity Portal attribute.
 |
Restrict Words From Question in Answer
Selecting this option will prevent any of the words contained in the question from being allowed within the answer itself. This option prevents users from using the question for their answer.
The Blacklisted Values and Blacklisted Attribute Values functionality both depend on whether the Full Matches Only checkbox is selected.
The Full Matches Only checkbox determines whether the value of the answer applies to:
The whole answer
Individual word(s)
Partial words
Blacklisted Values
Administrators can add any explicit value to nullify an answer, such as the company's name or any other answer mapping to the organization's security policy.
Adding a Blacklisted Value entry of AUTO, produces the following results:
If Full Matches Only is enabled
Answer | Accepted? |
|---|---|
AUTO | No |
MY DOG'S NAME IS AUTO | Yes |
I LOVE AUTOMATION | Yes |
If Full Matches Only is disabled
Answer | Accepted? |
|---|---|
AUTO | No |
MY DOG'S NAME IS AUTO | No |
I LOVE AUTOMATION | No |
Blacklisted Attribute Values
This field functions exactly the same as Blacklisted Fields but takes its comparison value from a directory attribute. This functionality allows for the prevention of answers that contain values such as the user's name or ID.
Adding a Blacklisted Attribute Value entry of GIVEN_NAME, and my name is James, produces the following results:
If Full Matches Only is enabled
Answer | Accepted? |
|---|---|
JAMES | No |
MY NAME IS JAMES | Yes |
MY LAST NAME IS JAMESON | Yes |
If Full Matches Only is disabled
Answer | Accepted? |
|---|---|
JAMES | No |
MY NAME IS JAMES | No |
MY LAST NAME IS JAMESON | No |