Credential States and Supported Transitions
CA Strong Authentication supports the following states
for a credential that is issued to a user:
aatest
2112668
CA Strong Authentication supports the following states for a credential that is
issued to a user:
- ACTIVEIndicates that the credential is active and can be used for authentication.
- DISABLEDThe credential is disabled by the administrator.
- LOCKEDThe credential is locked when the user consecutively fails to authenticate for the maximum number of negative attempts configured. For example if the maximum attempts configured is 3, then the third attempt with wrong credential will lock the credential.
- VERIFIEDThe credential is verified when the OTP submitted by the user is authenticated by CA Strong Authentication Server successfully.This status is applicableonlyfor OTP.
- DELETEDThe credential of the user is deleted.
When you perform an operation on a credential, the status of the credential might be
changed after the operation is performed successfully on the credential. For
example, when the user successfully authenticates with their OTP, then status of the
user’s OTP is changed to VERIFIED.
The following table lists the transitions possible between the supported credential
states:
Current State
| Change State to
| ||||
Enabled
| Locked
| Disabled
| Deleted
| Verified (for OTP only)
| |
Enabled | Yes | Yes | Yes | Yes | Yes |
Locked | Yes | Yes | Yes | Yes | No |
Disabled | Yes | No | Yes | Yes | No |
Deleted | No | No | No | Yes | No |
Verified | No | No | No | Yes | No |