000014366 - AxM / AA Explain the Challenge Question and Answer validators

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014366
Applies ToRSA Access Manager 6.x
RSA Adaptive Authentication On Premise
IssueAxM / AA   Explain the Challenge Question and Answer validators
Customer trying to understand what (exactly) the Challenge Question and Answer  validators respond to so that an informed message can be given to user.   The errors are sent via the URL (  ...&CTAAErrorMsg=Invalid input data ). The validators can be found in the  RSA Adaptive Authentication System in the file, validate.rsaUser.properties, in the directory WEB-INF/configs.
Find the following line:           default.validators=alphanumeric,blacklist,length,illegalchars
Resolution

Details on the validators and what they explicitly do:

alphanumeric  -  Only letters, digits , whitespace
blacklist is defined in the phrase_profanities.txt (has a different file for each supported language) file inside the AAOP configs directory (AdaptiveAuthentication/WEB-INF/classes/configs folder, attached).

list of illegalChars:  ` < > " ' % ; ( ) & + \ # ? { } | ^ ~ [ ]

Length: This depends on how its configured for each input like phrase, answer,username etc? in the .properties file inside AdaptiveAuthentication/WEB-INF/classes/configs folder

for example in validate.rsaUser.properties file the following is configured:

phrase.length=1,100
answer.length=1,50
question.length=1,20
answer1.length=1,50
answer2.length=1,50
answer3.length=1,50
username.length=1,50
email.length=3,100
phone.length=1,20

this means that length of phrase should be 1 to 100 and so on.

Legacy Article IDa50946

Attachments

    Outcomes