Credential States and Supported State Transitions
CA Strong Authentication supports the following states
for a credential that is issued to a user:
aatest
2112464
CA Strong Authentication supports the following states for a credential that is
issued to a user:
- ACTIVEIndicates that the credential is active and can be used for authentication.
- DISABLEDThe credential is disabled by the administrator.
- LOCKEDThe credential is locked when the user consecutively fails to authenticate for the maximum number of negative attempts configured. For example if the maximum attempts configured is 3, then the third attempt with wrong credential will lock the credential.
- VERIFIEDThe credential is verified when the OTP submitted by the user is authenticated by the CA Strong Authentication Server successfully.This status is applicable only for OTP.
- DELETEDThe credential of the user is deleted.
When you perform an operation on a credential, the status of the credential might be
changed after the operation is performed successfully on the credential. For
example, when the user successfully authenticates with their OTP, then status of the
user’s OTP is changed to VERIFIED.
The following table lists the transitions possible between the supported credential
states:
Current State
| Change State to
| ||||
Enabled
| Locked
| Disabled
| Deleted
| Verified (for OTP only ) | |
Active | Yes | Yes | Yes | Yes | Yes |
Locked | Yes | Yes | Yes | Yes | No |
Disabled | Yes | No | Yes | Yes | No |
Deleted | No | No | No | Yes | No |
Verified | No | No | No | Yes | No |