Precedence Logic

The ArcotID PKI Client behavior is determined by the settings that can be configured in four main ways:
aatest
The ArcotID PKI Client behavior is determined by the settings that can be configured in four main ways:
  • By the client itself
  • Inside an ArcotID PKI
  • From a Web page through the JavaScript API
  • Through choices made by the user at runtime
The precedence logic feature formalizes the precedence rules of how the run-time value of each setting is determined from the four sources of configuration information.
The precedence rules themselves cannot be customized.
In general, the highest priority preferences are the issuer preferences. The issuer preferences specify the allowable behaviors for the ArcotID PKI. If an issuer preference is not set, then the preference is for the application preferences and then the user preferences.
The precedence rules are described in the following table:
Features
Client Configuration
Issuer Preferences
Application Preferences
User Preferences
Storage type for ArcotID PKI storage during download
Default values
Allowable values
Refinement of allowable or default values. Decider if no settings on ArcotID PKI
Refinement of allowable values.
Location of ArcotID PKI (during usage)
Default value
Overrides default value using credential filtering attributes
Temporary or Permanent Download during Roaming
Permanent allowed only on some clients
Allowable values
Refinement of allowable or default values. Decider if no settings on ArcotID PKI
Refinement of allowable values
Device Locking
Enabled on some clients only
Allowable mechanisms for device locking
Refinement of allowable or default values.
Decider if no settings on ArcotID PKI
N/A*
ArcotID PKI Image displayed (applicable only when ATM GUI is used)
Default value
Overrides default value when present
N/A*
N/A*
PIN PAD scramble method
Default value
Overrides default value
Overrides ArcotID PKI values, but only within the set of possible values allowed inside the ArcotID PKI
*The feature is not applicable.