You can configure an authentication contract to perform the following actions:
Redirect a user logging in to the authentication contract using an expired password to the password management URI. See Redirection to Password Management Servlet Protected by Access Gateway When Password Expires.
To hide contracts with equal levels.
Perform the following steps:
On the Home page, click Identity Servers > [cluster name] > Authentication > Contracts > [Contract Name] > Advanced Settings > Options > Plus icon.
Specify the following Property Type details:
|
Property Type |
Description |
|---|---|
|
HIDE CARDS WITH EQUAL LEVEL |
Select Property Value as true to disable showing another higher level authentication cards, if Satisfiable by a contract of equal or higher level is enabled. |
|
AUTHENTICATE WITH EXPIRED PASSWORD |
Select Property Value as true to redirect a user logging with an expired password to the password management URI protected by Access Gateway. |
|
OTHER |
Specify Property Name and Value to configure another property. |
Click Save.