Credential States and Supported Transitions

CA Strong Authentication supports the following states for a credential that is issued to a user:
aa821test
2112668
CA Strong Authentication supports the following states for a credential that is issued to a user:
  • ACTIVE
    Indicates that the credential is active and can be used for authentication.
  • DISABLED
    The credential is disabled by the administrator.
  • LOCKED
    The credential is locked when the user consecutively fails to authenticate for the maximum number of negative attempts configured. For example if the maximum attempts configured is 3, then the third attempt with wrong credential will lock the credential.
  • VERIFIED
    The credential is verified when the OTP submitted by the user is authenticated by CA Strong Authentication Server successfully.
    This status is applicable
    only
    for OTP.
  • DELETED
    The credential of the user is deleted.
When you perform an operation on a credential, the status of the credential might be changed after the operation is performed successfully on the credential. For example, when the user successfully authenticates with their OTP, then status of the user’s OTP is changed to VERIFIED.
The following table lists the transitions possible between the supported credential states:
Current State
Change State to
Enabled
Locked
Disabled
Deleted
Verified (for OTP only)
Enabled
Yes
Yes
Yes
Yes
Yes
Locked
Yes
Yes
Yes
Yes
No
Disabled
Yes
No
Yes
Yes
No
Deleted
No
No
No
Yes
No
Verified
No
No
No
Yes
No