A SecureLogin passphrase is a question and response combination used as an alternative form of identity verification. Passphrase functionality protects SecureLogin credentials from unauthorized access and enables users to access SecureLogin in offline mode. Passphrases can also be used as a substitute authentication mode if, for example, a user forgets his or her password. Depending on your preferences, SecureLogin passphrase questions can be generated by the administrator and, or the user.
IMPORTANT:Enabling passphrase provides the following benefits:
It disables administrators to impersonate users and gain access to their secret data. Hence, the Passphrase Hidden must be used only when the LAN administrators are highly trusted, as getting access to users’ secret data may provide them access to other corporate systems.
It provides data encryption between the client and the LDAP server. Without the passphrase feature, the only protection available is ACL protection provided by the Directory server.
On initial login to SecureLogin, all users are requested to save a passphrase response. It is important that this response is easy to recall because it cannot be viewed by anyone.
WARNING:Remember the passphrase answer. You cannot access the answer if you forget it.
To set up a passphrase:
Specify a question in the Enter a question field.
Specify an answer in the Enter the answer field.
Specify the answer again in the Confirm the answer field.
Click OK. Your passphrase is saved and SecureLogin is installed on the workstation.
You can disable the passphrase policy by deselecting Use Passphrase Policy option in the Advanced Settings pane of the Administrative Management utility. If a passphrase has previously been configured, this dialog box does not display and the installation is complete.