General
Parameter |
Default value |
---|---|
MFA Method |
Select the method that FTC uses to further authenticate your end-users upon receiving their login credentials (i.e., username and password).
|
Max Login Attempts Before Lockout |
Click above the horizontal line and specify the number of failed login attempts allowed before lockout. Valid values range from 1 to 25. The default is 7. Note: FTC does not allow locked users to authenticate. Instead, it displays the message "Locked, please try again in <lockout interval> minutes." |
Lockout Period |
Click above the horizontal line and specify a lockout period, which ranges from 60 to 7,200 seconds. The default is 60 seconds. |
Enable Bypass |
Enable or disable bypass.
Note: If Enable Bypass is disabled on the Settings page, the admin user can not enable bypass for FTC end-users on the Users page. See Users. |
Bypass Expiration Time |
(Available only when Enable Bypass is enabled.) Specify the length of time bypass remains in effect. Valid values range from 5 minutes to 72 hours. The default is 1 hour (3,600 seconds). |
Auto-alias by Email |
Enable or disable the Auto-alias by Email feature. Note: The feature is disabled by default. For more information, see Enable Auto-alias by Email. |
Replay Protection |
HIGH (fortbid all replays) — The authentication follows the current mechanism and does not allow any OTP replay. MEDIUM (ignore FTM push replay) — The authentication counts OTP replays for manual input only. All the requests from push authentications are not counted and are not restricted by OTP replay protection. LOW (ignore FTM/FTK auth relpay) — OTP replay protection is disabled. Note: For email and SMS, OTP replay are always be rejected no matter what the setting is. |
Adaptive Auth Profile |
Select an adaptive auth profile. |