Built-In Username/Password Account Provider
The Identity Hub has a built-in Username/Password Account Provider. Only one such Account Provider can be activated per Tenant.
To allow users to register and sign in with the Username/Password Account Provider:
- Activate the HUB Account Provider (Username/Password) (see Activate an Account Providers)
- Set the configuration parameters on the HUB Account Provider (Username/Password)
Specific configuration parameters for the HUB Account Provider (Username/Password)
General
| Parameter | Description |
|---|---|
| Domain | Is always the URL segment of the Tenant. |
| Username must be an email address | When registering the user must specify an email address as username. Can only be activated if no users exist with duplicate email address. |
| Allow username retrieval | The user has the option to retrieve the username based on an email address. |
| Registration enabled | The user can self register through The Identity Hub UI. |
| Registration mail welcome text | The welcome text a user receives when registered. |
Password settings
| Parameter | Description |
|---|---|
| Password expires after | Number of days after which a user must change the password. 0 = Never (expires). |
| Password minimum required length | The minimum length a password must have. There is no maximum. The absolute minimum is 8. |
| Password must contain one character that is not a letter or digit | When true the password must at least have one character that is not a letter or digit. |
| Password must contain at least one digit | When true the password must at least have one digit. |
| Password must contain at least one lower case letter | When true the password must at least have one lower case character. |
| Password must contain at least one upper case letter | When true the password must at least have one upper case character. |
Advanced
| Parameter | Description |
|---|---|
| Exclusive email domain | Only users specifying an email address with this domain name can register. |
User password cycle
When users reset or change their password, they cannot reuse an already used password.
User lockout
When a user provides the wrong password 5 times consecutively, the user account will be locked out for 30 minutes.
Manage
It is possible to manage the user accounts contained in the built-in Username/Password Account Provider. You need to be at least a IAM admin in order to manage these users.
Accessing the user management can be done in two ways:
- From the identities overview page (see Identities), select the Manage Users option in the top menu.
- From the Account Provider detail page of the built-in Username/Password Account Provider, select the Manage option in the top menu (Tenant admin only).
Searching users
On the management page you can search for users supplying a filter. The filter will be compared against: given name, surname, email and username.
Selecting a user in the list will open the detail page.
Editing a user
From the user detail page, select the Edit option in the top menu.
Related
Amazon Account Provider
Activate an Account Provider
Custom Account Providers
Facebook Account Provider
GitHub Account Provider
Google Account Provider
Instagram Account Provider
LinkedIn Account Provider
Microsoft Account Provider
myID.be Account Provider
Office 365 Account Provider
OpenID Connect Account Provider
PayPal Account Provider
SAML-P Account Provider
StackExchange Account Provider
Twitter Account Provider
WS-Federation Account Provider