You can configure an authentication contract to perform the following actions:
Redirect a user logging in to the authentication contract using an expired password to the password management URI. See Redirection to Password Management Servlet Protected by Access Gateway When Password Expires.
To hide contracts with equal levels.
Perform the following steps:
Click Identity Servers > Edit > Local > Contracts > [Contract Name] > Options > New.
Specify the following details:
|
Property |
Description |
|---|---|
|
AUTHENTICATE WITH EXPIRED PASSWORD |
Select Property Value as true to redirect a user logging with an expired password to the password management URI protected by an Access Gateway. |
|
HIDE CARDS WITH EQUAL LEVEL |
Select Property Value as true to disable showing another higher level authentication cards, if Satisfiable by a contract of equal or higher level is enabled. |
|
OTHER |
Specify Property Name and Value to configure another property. |
Click OK.