Configuring Security Questions
Configure security questions settings, select the security questions that a user may use as a second verification method during sign-in, and add custom security questions for access to an in an identity domain in IAM.
- Open the navigation menu and click Identity & Security. Under Identity, click Domains.
- Click the name of the identity domain that you want to work in. You might need to change the compartment to find the domain that you want.
- On the domain details page, click Security.
- On the Security page, click Two-factor authentication.
- Click the Security questions tab.
-
Under Security questions settings, set options for answer length and the number of questions a user is asked.
The minimum number of security questions that a user must set up is three.Note
This value can't be changed using the user interface. If you need to change this number, you must use the/SecurityQuestionSettings
API endpoint.- Minimum answer length (characters): The minimum number of characters that must be contained in each security question answer. Enter a value between 1 and 8.
- Number of security questions a user is asked: Set the number of questions a user is asked. Enter a value between 1 and 5.
-
Under Manage security questions, select the checkboxes for the preconfigured questions that you want to use.
To disable a default security question, clear the checkbox for that question.
- Select the Language in which you want to view the questions.
-
To add a custom security question, click Add question and then follow these steps:
-
In the Add a security question panel, enter the custom security question in the Default language field. Optionally, enter the translated question text into the appropriate language row. When you view the custom security questions in a different language, those questions appear in your default language if you don't provide translated question text.
A good security question should be a memorable piece of information that only the user would know. It should not be easily discoverable.
Good example: What was the name of your second pet?
Bad example: What was your high school mascot?
- Click Add.
-
Confirm the changes.
The custom question is added at the bottom of the user-defined Questions list.
-
In the Add a security question panel, enter the custom security question in the Default language field. Optionally, enter the translated question text into the appropriate language row. When you view the custom security questions in a different language, those questions appear in your default language if you don't provide translated question text.
-
To remove a custom question, follow these steps:
- Find the custom question in the User defined questions list.
- Click the Actions menu () of the question and select Remove.
- Click Remove in the confirmation dialog box.
- When you're done configuring security questions, click Save changes.