User-Specific Authentication Policy Overrides

Policies can be set up in a hierarchy, where a policy inherits attributes from a parent policy, but applies some modifications for a slightly different scenario. At the top of that hierarchy is a given parent or base policy, which does not inherit any attributes from any other policy, i.e. a so-called parentless policy. That topmost policy is not necessarily the default base policy specified in OneSpan Authentication Server, i.e. Base Policy.

Policy attributes can be overridden. You can set the following authentication policy settings at the user level:

• Local authentication
• Back-end authentication
• Offline authentication
• Max days between authentications
• Virtual Mobile Authenticator delivery method
• Virtual Mobile Authenticator MDC profile
• Virtual signature delivery method
• Virtual signature MDC profile

When configured at the user level, these settings will override those set by the parent policy.

To configure user-specific authentication policy settings

1. Log on to the Administration Web Interface.
2. Switch to USERS > List or USERS > Find/manage to search for the target user account.
3. Select the User's account to open its properties page.
4. In the Policy Overrides tab, click Edit. Configure the Authentication Policy Override and Virtual DIGIPASS / Virtual Signature Override settings.
5. Click Save to apply your settings.