Access/Mitigation Policies

Alert attributes control the types of information included in a message as well as where the messages are sent, i.e. email address or SMS. Alert message generation is controlled by the KCL Code.

The code sample can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_Basic.xml.

pproval attributes define where to send an external access-authorization passcode. This passcode must be provided to the User at access time to complete authentication.

The code samples can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_email_approval_1of2.xml or
4. Select ID_email_approval_2of2.xml

Configuration attributes consist of two types of information, hardware and network location. Hardware and network can be used together as a configuration or individually as restriction attribute.

The code samples can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_configuration_restriction.xml or
4. Select ID_hardware_restriction.xml or
5. Select ID_network_restriction.xml

EventSetup controls how the UXP Engine records UXP Object activities. Various event actions may trigger an entry into the internal UXP Object event log. The event log entries can also be recorded externally in a file or repository.

The code sample can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_Basic.xml

General attributes control time and access limits for a UXP Object. Examples include such attributes as total number of UXP Object accesses or maximum time for the Object being idle.

The code sample can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_Basic.xml

Restriction attributes assign actions to authentication scenarios. These attributes allow a variety of controls to be set.

The code sample can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_movement_restriction.xml or
4. Select any *.xml with restriction in the name

Schedule attributes define time-frame and day-of-the-week access restrictions. As a default, a schedule without restrictions is set up.

The code sample can be found on the Code Samples page in the Additional Samples section.

1. Expand the Downloads folder
2. Expand folder 6 – ID Definition-XML-Samples
3. Select ID_schedule_restriction.xml

Privileges in the XML are represented as a single tag at the ID Level. These privileges define how the ID Definition is utilized. The privileges apply equally to all Users included in the KCL Code

The privileges with their respective entry in the XML tag are the following:

• Permit member import (Imports)
• Permit UXP creation (Files)
• Permit Single Sign-On (SSO)
• Permit SmartMessage (Messages)