oci logo
Oracle Cloud Infrastructure v0.12.0, Mar 17 23

oci.Identity.DomainsAuthenticationFactorSetting

This resource provides the Authentication Factor Setting resource in Oracle Cloud Infrastructure Identity Domains service.

Replace Authentication Factor Settings

Create DomainsAuthenticationFactorSetting Resource

new DomainsAuthenticationFactorSetting(name: string, args: DomainsAuthenticationFactorSettingArgs, opts?: CustomResourceOptions);
@overload
def DomainsAuthenticationFactorSetting(resource_name: str,
                                       opts: Optional[ResourceOptions] = None,
                                       attribute_sets: Optional[Sequence[str]] = None,
                                       attributes: Optional[str] = None,
                                       authentication_factor_setting_id: Optional[str] = None,
                                       authorization: Optional[str] = None,
                                       auto_enroll_email_factor_disabled: Optional[bool] = None,
                                       bypass_code_enabled: Optional[bool] = None,
                                       bypass_code_settings: Optional[_identity.DomainsAuthenticationFactorSettingBypassCodeSettingsArgs] = None,
                                       client_app_settings: Optional[_identity.DomainsAuthenticationFactorSettingClientAppSettingsArgs] = None,
                                       compliance_policies: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingCompliancePolicyArgs]] = None,
                                       email_enabled: Optional[bool] = None,
                                       email_settings: Optional[_identity.DomainsAuthenticationFactorSettingEmailSettingsArgs] = None,
                                       endpoint_restrictions: Optional[_identity.DomainsAuthenticationFactorSettingEndpointRestrictionsArgs] = None,
                                       fido_authenticator_enabled: Optional[bool] = None,
                                       hide_backup_factor_enabled: Optional[bool] = None,
                                       idcs_endpoint: Optional[str] = None,
                                       identity_store_settings: Optional[_identity.DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs] = None,
                                       mfa_enrollment_type: Optional[str] = None,
                                       notification_settings: Optional[_identity.DomainsAuthenticationFactorSettingNotificationSettingsArgs] = None,
                                       ocid: Optional[str] = None,
                                       phone_call_enabled: Optional[bool] = None,
                                       push_enabled: Optional[bool] = None,
                                       resource_type_schema_version: Optional[str] = None,
                                       schemas: Optional[Sequence[str]] = None,
                                       security_questions_enabled: Optional[bool] = None,
                                       sms_enabled: Optional[bool] = None,
                                       tags: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingTagArgs]] = None,
                                       third_party_factor: Optional[_identity.DomainsAuthenticationFactorSettingThirdPartyFactorArgs] = None,
                                       totp_enabled: Optional[bool] = None,
                                       totp_settings: Optional[_identity.DomainsAuthenticationFactorSettingTotpSettingsArgs] = None,
                                       urnietfparamsscimschemasoracleidcsextensionfido_authentication_factor_settings: Optional[_identity.DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs] = None,
                                       urnietfparamsscimschemasoracleidcsextensionthird_party_authentication_factor_settings: Optional[_identity.DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs] = None,
                                       user_enrollment_disabled_factors: Optional[Sequence[str]] = None,
                                       yubico_otp_enabled: Optional[bool] = None)
@overload
def DomainsAuthenticationFactorSetting(resource_name: str,
                                       args: DomainsAuthenticationFactorSettingArgs,
                                       opts: Optional[ResourceOptions] = None)
func NewDomainsAuthenticationFactorSetting(ctx *Context, name string, args DomainsAuthenticationFactorSettingArgs, opts ...ResourceOption) (*DomainsAuthenticationFactorSetting, error)
public DomainsAuthenticationFactorSetting(string name, DomainsAuthenticationFactorSettingArgs args, CustomResourceOptions? opts = null)
public DomainsAuthenticationFactorSetting(String name, DomainsAuthenticationFactorSettingArgs args)
public DomainsAuthenticationFactorSetting(String name, DomainsAuthenticationFactorSettingArgs args, CustomResourceOptions options)
type: oci:Identity:DomainsAuthenticationFactorSetting
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args DomainsAuthenticationFactorSettingArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args DomainsAuthenticationFactorSettingArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args DomainsAuthenticationFactorSettingArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args DomainsAuthenticationFactorSettingArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args DomainsAuthenticationFactorSettingArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

DomainsAuthenticationFactorSetting Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The DomainsAuthenticationFactorSetting resource accepts the following input properties:

AuthenticationFactorSettingId string

ID of the resource

BypassCodeEnabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

BypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

ClientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

CompliancePolicies List<DomainsAuthenticationFactorSettingCompliancePolicyArgs>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

EndpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

IdcsEndpoint string

The basic endpoint for the identity domain

MfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

NotificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

PushEnabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

Schemas List<string>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

SecurityQuestionsEnabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

SmsEnabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

TotpEnabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

TotpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

AttributeSets List<string>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

Attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

Authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

AutoEnrollEmailFactorDisabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

EmailEnabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

EmailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

FidoAuthenticatorEnabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

HideBackupFactorEnabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

IdentityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

PhoneCallEnabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

ResourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

Tags List<DomainsAuthenticationFactorSettingTagArgs>

(Updatable) A list of tags on this resource.

ThirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

UrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

UrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

UserEnrollmentDisabledFactors List<string>

(Updatable) Factors for which enrollment should be blocked for End User

YubicoOtpEnabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

AuthenticationFactorSettingId string

ID of the resource

BypassCodeEnabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

BypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

ClientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

CompliancePolicies []DomainsAuthenticationFactorSettingCompliancePolicyArgs

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

EndpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

IdcsEndpoint string

The basic endpoint for the identity domain

MfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

NotificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

PushEnabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

Schemas []string

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

SecurityQuestionsEnabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

SmsEnabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

TotpEnabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

TotpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

AttributeSets []string

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

Attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

Authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

AutoEnrollEmailFactorDisabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

EmailEnabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

EmailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

FidoAuthenticatorEnabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

HideBackupFactorEnabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

IdentityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

PhoneCallEnabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

ResourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

Tags []DomainsAuthenticationFactorSettingTagArgs

(Updatable) A list of tags on this resource.

ThirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

UrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

UrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

UserEnrollmentDisabledFactors []string

(Updatable) Factors for which enrollment should be blocked for End User

YubicoOtpEnabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

authenticationFactorSettingId String

ID of the resource

bypassCodeEnabled Boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compliancePolicies List<DomainsAuthenticationFactorSettingCompliancePolicyArgs>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

endpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

idcsEndpoint String

The basic endpoint for the identity domain

mfaEnrollmentType String

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

pushEnabled Boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

schemas List<String>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled Boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled Boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

totpEnabled Boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

attributeSets List<String>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes String

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authorization String

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled Boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

emailEnabled Boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

fidoAuthenticatorEnabled Boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled Boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

identityStoreSettings DomainsAuthenticationFactorSettingStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled Boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

resourceTypeSchemaVersion String

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

tags List<DomainsAuthenticationFactorSettingTagArgs>

(Updatable) A list of tags on this resource.

thirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors List<String>

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled Boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

authenticationFactorSettingId string

ID of the resource

bypassCodeEnabled boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compliancePolicies DomainsAuthenticationFactorSettingCompliancePolicyArgs[]

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

endpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

idcsEndpoint string

The basic endpoint for the identity domain

mfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

pushEnabled boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

schemas string[]

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

totpEnabled boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

attributeSets string[]

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

emailEnabled boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

fidoAuthenticatorEnabled boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

identityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

resourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

tags DomainsAuthenticationFactorSettingTagArgs[]

(Updatable) A list of tags on this resource.

thirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors string[]

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

authentication_factor_setting_id str

ID of the resource

bypass_code_enabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypass_code_settings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

client_app_settings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compliance_policies DomainsAuthenticationFactorSettingCompliancePolicyArgs]

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

endpoint_restrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

idcs_endpoint str

The basic endpoint for the identity domain

mfa_enrollment_type str

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notification_settings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

push_enabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

schemas Sequence[str]

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

security_questions_enabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

sms_enabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

totp_enabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totp_settings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

attribute_sets Sequence[str]

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes str

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authorization str

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

auto_enroll_email_factor_disabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

email_enabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

email_settings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

fido_authenticator_enabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hide_backup_factor_enabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

identity_store_settings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

ocid str

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phone_call_enabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

resource_type_schema_version str

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

tags DomainsAuthenticationFactorSettingTagArgs]

(Updatable) A list of tags on this resource.

third_party_factor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

urnietfparamsscimschemasoracleidcsextensionfido_authentication_factor_settings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthird_party_authentication_factor_settings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

user_enrollment_disabled_factors Sequence[str]

(Updatable) Factors for which enrollment should be blocked for End User

yubico_otp_enabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

authenticationFactorSettingId String

ID of the resource

bypassCodeEnabled Boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings Property Map

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings Property Map

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compliancePolicies List<Property Map>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

endpointRestrictions Property Map

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

idcsEndpoint String

The basic endpoint for the identity domain

mfaEnrollmentType String

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings Property Map

(Updatable) Settings related to the Mobile App Notification channel, such as pull

pushEnabled Boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

schemas List<String>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled Boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled Boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

totpEnabled Boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings Property Map

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

attributeSets List<String>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes String

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authorization String

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled Boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

emailEnabled Boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings Property Map

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

fidoAuthenticatorEnabled Boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled Boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

identityStoreSettings Property Map

(Updatable) Settings related to the use of a user's profile details from the identity store

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled Boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

resourceTypeSchemaVersion String

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

tags List<Property Map>

(Updatable) A list of tags on this resource.

thirdPartyFactor Property Map

(Updatable) Settings related to third-party factor

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings Property Map

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings Property Map

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors List<String>

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled Boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

Outputs

All input properties are implicitly available as output properties. Additionally, the DomainsAuthenticationFactorSetting resource produces the following output properties:

CompartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

DeleteInProgress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

DomainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

Id string

The provider-assigned unique ID for this managed resource.

IdcsCreatedBies List<DomainsAuthenticationFactorSettingIdcsCreatedBy>

(Updatable) The User or App who created the Resource

IdcsLastModifiedBies List<DomainsAuthenticationFactorSettingIdcsLastModifiedBy>

(Updatable) The User or App who modified the Resource

IdcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

IdcsPreventedOperations List<string>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

Metas List<DomainsAuthenticationFactorSettingMeta>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

MfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

TenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

CompartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

DeleteInProgress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

DomainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

Id string

The provider-assigned unique ID for this managed resource.

IdcsCreatedBies []DomainsAuthenticationFactorSettingIdcsCreatedBy

(Updatable) The User or App who created the Resource

IdcsLastModifiedBies []DomainsAuthenticationFactorSettingIdcsLastModifiedBy

(Updatable) The User or App who modified the Resource

IdcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

IdcsPreventedOperations []string

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

Metas []DomainsAuthenticationFactorSettingMeta

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

MfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

TenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid String

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

deleteInProgress Boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid String

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

id String

The provider-assigned unique ID for this managed resource.

idcsCreatedBies List<DomainsAuthenticationFactorSettingIdcsCreatedBy>

(Updatable) The User or App who created the Resource

idcsLastModifiedBies List<DomainsAuthenticationFactorSettingIdcsLastModifiedBy>

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease String

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations List<String>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

metas List<DomainsAuthenticationFactorSettingMeta>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory String

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

tenancyOcid String

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

deleteInProgress boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

id string

The provider-assigned unique ID for this managed resource.

idcsCreatedBies DomainsAuthenticationFactorSettingIdcsCreatedBy[]

(Updatable) The User or App who created the Resource

idcsLastModifiedBies DomainsAuthenticationFactorSettingIdcsLastModifiedBy[]

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations string[]

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

metas DomainsAuthenticationFactorSettingMeta[]

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

tenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartment_ocid str

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

delete_in_progress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domain_ocid str

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

id str

The provider-assigned unique ID for this managed resource.

idcs_created_bies DomainsAuthenticationFactorSettingIdcsCreatedBy]

(Updatable) The User or App who created the Resource

idcs_last_modified_bies DomainsAuthenticationFactorSettingIdcsLastModifiedBy]

(Updatable) The User or App who modified the Resource

idcs_last_upgraded_in_release str

(Updatable) The release number when the resource was upgraded.

idcs_prevented_operations Sequence[str]

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

metas DomainsAuthenticationFactorSettingMeta]

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfa_enabled_category str

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

tenancy_ocid str

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

compartmentOcid String

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

deleteInProgress Boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid String

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

id String

The provider-assigned unique ID for this managed resource.

idcsCreatedBies List<Property Map>

(Updatable) The User or App who created the Resource

idcsLastModifiedBies List<Property Map>

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease String

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations List<String>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

metas List<Property Map>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory String

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

tenancyOcid String

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

Look up Existing DomainsAuthenticationFactorSetting Resource

Get an existing DomainsAuthenticationFactorSetting resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: DomainsAuthenticationFactorSettingState, opts?: CustomResourceOptions): DomainsAuthenticationFactorSetting
@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        attribute_sets: Optional[Sequence[str]] = None,
        attributes: Optional[str] = None,
        authentication_factor_setting_id: Optional[str] = None,
        authorization: Optional[str] = None,
        auto_enroll_email_factor_disabled: Optional[bool] = None,
        bypass_code_enabled: Optional[bool] = None,
        bypass_code_settings: Optional[_identity.DomainsAuthenticationFactorSettingBypassCodeSettingsArgs] = None,
        client_app_settings: Optional[_identity.DomainsAuthenticationFactorSettingClientAppSettingsArgs] = None,
        compartment_ocid: Optional[str] = None,
        compliance_policies: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingCompliancePolicyArgs]] = None,
        delete_in_progress: Optional[bool] = None,
        domain_ocid: Optional[str] = None,
        email_enabled: Optional[bool] = None,
        email_settings: Optional[_identity.DomainsAuthenticationFactorSettingEmailSettingsArgs] = None,
        endpoint_restrictions: Optional[_identity.DomainsAuthenticationFactorSettingEndpointRestrictionsArgs] = None,
        fido_authenticator_enabled: Optional[bool] = None,
        hide_backup_factor_enabled: Optional[bool] = None,
        idcs_created_bies: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingIdcsCreatedByArgs]] = None,
        idcs_endpoint: Optional[str] = None,
        idcs_last_modified_bies: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs]] = None,
        idcs_last_upgraded_in_release: Optional[str] = None,
        idcs_prevented_operations: Optional[Sequence[str]] = None,
        identity_store_settings: Optional[_identity.DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs] = None,
        metas: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingMetaArgs]] = None,
        mfa_enabled_category: Optional[str] = None,
        mfa_enrollment_type: Optional[str] = None,
        notification_settings: Optional[_identity.DomainsAuthenticationFactorSettingNotificationSettingsArgs] = None,
        ocid: Optional[str] = None,
        phone_call_enabled: Optional[bool] = None,
        push_enabled: Optional[bool] = None,
        resource_type_schema_version: Optional[str] = None,
        schemas: Optional[Sequence[str]] = None,
        security_questions_enabled: Optional[bool] = None,
        sms_enabled: Optional[bool] = None,
        tags: Optional[Sequence[_identity.DomainsAuthenticationFactorSettingTagArgs]] = None,
        tenancy_ocid: Optional[str] = None,
        third_party_factor: Optional[_identity.DomainsAuthenticationFactorSettingThirdPartyFactorArgs] = None,
        totp_enabled: Optional[bool] = None,
        totp_settings: Optional[_identity.DomainsAuthenticationFactorSettingTotpSettingsArgs] = None,
        urnietfparamsscimschemasoracleidcsextensionfido_authentication_factor_settings: Optional[_identity.DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs] = None,
        urnietfparamsscimschemasoracleidcsextensionthird_party_authentication_factor_settings: Optional[_identity.DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs] = None,
        user_enrollment_disabled_factors: Optional[Sequence[str]] = None,
        yubico_otp_enabled: Optional[bool] = None) -> DomainsAuthenticationFactorSetting
func GetDomainsAuthenticationFactorSetting(ctx *Context, name string, id IDInput, state *DomainsAuthenticationFactorSettingState, opts ...ResourceOption) (*DomainsAuthenticationFactorSetting, error)
public static DomainsAuthenticationFactorSetting Get(string name, Input<string> id, DomainsAuthenticationFactorSettingState? state, CustomResourceOptions? opts = null)
public static DomainsAuthenticationFactorSetting get(String name, Output<String> id, DomainsAuthenticationFactorSettingState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
resource_name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
name
The unique name of the resulting resource.
id
The unique provider ID of the resource to lookup.
state
Any extra arguments used during the lookup.
opts
A bag of options that control this resource's behavior.
The following state arguments are supported:
AttributeSets List<string>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

Attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

AuthenticationFactorSettingId string

ID of the resource

Authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

AutoEnrollEmailFactorDisabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

BypassCodeEnabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

BypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

ClientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

CompartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

CompliancePolicies List<DomainsAuthenticationFactorSettingCompliancePolicyArgs>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

DeleteInProgress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

DomainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

EmailEnabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

EmailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

EndpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

FidoAuthenticatorEnabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

HideBackupFactorEnabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

IdcsCreatedBies List<DomainsAuthenticationFactorSettingIdcsCreatedByArgs>

(Updatable) The User or App who created the Resource

IdcsEndpoint string

The basic endpoint for the identity domain

IdcsLastModifiedBies List<DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs>

(Updatable) The User or App who modified the Resource

IdcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

IdcsPreventedOperations List<string>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

IdentityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

Metas List<DomainsAuthenticationFactorSettingMetaArgs>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

MfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

MfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

NotificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

PhoneCallEnabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

PushEnabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

ResourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

Schemas List<string>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

SecurityQuestionsEnabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

SmsEnabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

Tags List<DomainsAuthenticationFactorSettingTagArgs>

(Updatable) A list of tags on this resource.

TenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

ThirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

TotpEnabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

TotpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

UrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

UrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

UserEnrollmentDisabledFactors List<string>

(Updatable) Factors for which enrollment should be blocked for End User

YubicoOtpEnabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

AttributeSets []string

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

Attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

AuthenticationFactorSettingId string

ID of the resource

Authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

AutoEnrollEmailFactorDisabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

BypassCodeEnabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

BypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

ClientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

CompartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

CompliancePolicies []DomainsAuthenticationFactorSettingCompliancePolicyArgs

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

DeleteInProgress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

DomainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

EmailEnabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

EmailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

EndpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

FidoAuthenticatorEnabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

HideBackupFactorEnabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

IdcsCreatedBies []DomainsAuthenticationFactorSettingIdcsCreatedByArgs

(Updatable) The User or App who created the Resource

IdcsEndpoint string

The basic endpoint for the identity domain

IdcsLastModifiedBies []DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs

(Updatable) The User or App who modified the Resource

IdcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

IdcsPreventedOperations []string

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

IdentityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

Metas []DomainsAuthenticationFactorSettingMetaArgs

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

MfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

MfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

NotificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

PhoneCallEnabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

PushEnabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

ResourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

Schemas []string

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

SecurityQuestionsEnabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

SmsEnabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

Tags []DomainsAuthenticationFactorSettingTagArgs

(Updatable) A list of tags on this resource.

TenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

ThirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

TotpEnabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

TotpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

UrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

UrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

UserEnrollmentDisabledFactors []string

(Updatable) Factors for which enrollment should be blocked for End User

YubicoOtpEnabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

attributeSets List<String>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes String

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authenticationFactorSettingId String

ID of the resource

authorization String

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled Boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

bypassCodeEnabled Boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compartmentOcid String

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

compliancePolicies List<DomainsAuthenticationFactorSettingCompliancePolicyArgs>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

deleteInProgress Boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid String

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

emailEnabled Boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

endpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

fidoAuthenticatorEnabled Boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled Boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

idcsCreatedBies List<DomainsAuthenticationFactorSettingIdcsCreatedByArgs>

(Updatable) The User or App who created the Resource

idcsEndpoint String

The basic endpoint for the identity domain

idcsLastModifiedBies List<DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs>

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease String

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations List<String>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

identityStoreSettings DomainsAuthenticationFactorSettingStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

metas List<DomainsAuthenticationFactorSettingMetaArgs>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory String

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

mfaEnrollmentType String

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled Boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

pushEnabled Boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

resourceTypeSchemaVersion String

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

schemas List<String>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled Boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled Boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

tags List<DomainsAuthenticationFactorSettingTagArgs>

(Updatable) A list of tags on this resource.

tenancyOcid String

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

thirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

totpEnabled Boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors List<String>

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled Boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

attributeSets string[]

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes string

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authenticationFactorSettingId string

ID of the resource

authorization string

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

bypassCodeEnabled boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compartmentOcid string

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

compliancePolicies DomainsAuthenticationFactorSettingCompliancePolicyArgs[]

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

deleteInProgress boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid string

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

emailEnabled boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

endpointRestrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

fidoAuthenticatorEnabled boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

idcsCreatedBies DomainsAuthenticationFactorSettingIdcsCreatedByArgs[]

(Updatable) The User or App who created the Resource

idcsEndpoint string

The basic endpoint for the identity domain

idcsLastModifiedBies DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs[]

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease string

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations string[]

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

identityStoreSettings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

metas DomainsAuthenticationFactorSettingMetaArgs[]

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory string

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

mfaEnrollmentType string

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

pushEnabled boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

resourceTypeSchemaVersion string

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

schemas string[]

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

tags DomainsAuthenticationFactorSettingTagArgs[]

(Updatable) A list of tags on this resource.

tenancyOcid string

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

thirdPartyFactor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

totpEnabled boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors string[]

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

attribute_sets Sequence[str]

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes str

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authentication_factor_setting_id str

ID of the resource

authorization str

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

auto_enroll_email_factor_disabled bool

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

bypass_code_enabled bool

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypass_code_settings DomainsAuthenticationFactorSettingBypassCodeSettingsArgs

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

client_app_settings DomainsAuthenticationFactorSettingClientAppSettingsArgs

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compartment_ocid str

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

compliance_policies DomainsAuthenticationFactorSettingCompliancePolicyArgs]

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

delete_in_progress bool

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domain_ocid str

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

email_enabled bool

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

email_settings DomainsAuthenticationFactorSettingEmailSettingsArgs

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

endpoint_restrictions DomainsAuthenticationFactorSettingEndpointRestrictionsArgs

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

fido_authenticator_enabled bool

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hide_backup_factor_enabled bool

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

idcs_created_bies DomainsAuthenticationFactorSettingIdcsCreatedByArgs]

(Updatable) The User or App who created the Resource

idcs_endpoint str

The basic endpoint for the identity domain

idcs_last_modified_bies DomainsAuthenticationFactorSettingIdcsLastModifiedByArgs]

(Updatable) The User or App who modified the Resource

idcs_last_upgraded_in_release str

(Updatable) The release number when the resource was upgraded.

idcs_prevented_operations Sequence[str]

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

identity_store_settings DomainsAuthenticationFactorSettingIdentityStoreSettingsArgs

(Updatable) Settings related to the use of a user's profile details from the identity store

metas DomainsAuthenticationFactorSettingMetaArgs]

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfa_enabled_category str

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

mfa_enrollment_type str

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notification_settings DomainsAuthenticationFactorSettingNotificationSettingsArgs

(Updatable) Settings related to the Mobile App Notification channel, such as pull

ocid str

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phone_call_enabled bool

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

push_enabled bool

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

resource_type_schema_version str

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

schemas Sequence[str]

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

security_questions_enabled bool

(Updatable) If true, indicates that Security Questions are enabled for authentication

sms_enabled bool

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

tags DomainsAuthenticationFactorSettingTagArgs]

(Updatable) A list of tags on this resource.

tenancy_ocid str

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

third_party_factor DomainsAuthenticationFactorSettingThirdPartyFactorArgs

(Updatable) Settings related to third-party factor

totp_enabled bool

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totp_settings DomainsAuthenticationFactorSettingTotpSettingsArgs

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

urnietfparamsscimschemasoracleidcsextensionfido_authentication_factor_settings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthird_party_authentication_factor_settings DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsArgs

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

user_enrollment_disabled_factors Sequence[str]

(Updatable) Factors for which enrollment should be blocked for End User

yubico_otp_enabled bool

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

attributeSets List<String>

(Updatable) A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.

attributes String

(Updatable) A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.

authenticationFactorSettingId String

ID of the resource

authorization String

(Updatable) The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.

autoEnrollEmailFactorDisabled Boolean

(Updatable) If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor

bypassCodeEnabled Boolean

(Updatable) If true, indicates that Bypass Code is enabled for authentication

bypassCodeSettings Property Map

(Updatable) Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on

clientAppSettings Property Map

(Updatable) Settings related to compliance, Personal Identification Number (PIN) policy, and so on

compartmentOcid String

(Updatable) Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.

compliancePolicies List<Property Map>

(Updatable) Compliance Policy that defines actions to be taken when a condition is violated

deleteInProgress Boolean

(Updatable) A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.

domainOcid String

(Updatable) Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.

emailEnabled Boolean

(Updatable) If true, indicates that the EMAIL channel is enabled for authentication

emailSettings Property Map

(Updatable) Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link

endpointRestrictions Property Map

(Updatable) Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user

fidoAuthenticatorEnabled Boolean

(Updatable) If true, indicates that the Fido Authenticator channels are enabled for authentication

hideBackupFactorEnabled Boolean

(Updatable) If true, indicates that 'Show backup factor(s)' button will be hidden during authentication

idcsCreatedBies List<Property Map>

(Updatable) The User or App who created the Resource

idcsEndpoint String

The basic endpoint for the identity domain

idcsLastModifiedBies List<Property Map>

(Updatable) The User or App who modified the Resource

idcsLastUpgradedInRelease String

(Updatable) The release number when the resource was upgraded.

idcsPreventedOperations List<String>

(Updatable) Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.

identityStoreSettings Property Map

(Updatable) Settings related to the use of a user's profile details from the identity store

metas List<Property Map>

(Updatable) A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.

mfaEnabledCategory String

(Updatable) Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings

mfaEnrollmentType String

(Updatable) Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user

notificationSettings Property Map

(Updatable) Settings related to the Mobile App Notification channel, such as pull

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

phoneCallEnabled Boolean

(Updatable) If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication

pushEnabled Boolean

(Updatable) If true, indicates that the Mobile App Push Notification channel is enabled for authentication

resourceTypeSchemaVersion String

(Updatable) An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.

schemas List<String>

(Updatable) REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.

securityQuestionsEnabled Boolean

(Updatable) If true, indicates that Security Questions are enabled for authentication

smsEnabled Boolean

(Updatable) If true, indicates that the Short Message Service (SMS) channel is enabled for authentication

tags List<Property Map>

(Updatable) A list of tags on this resource.

tenancyOcid String

(Updatable) Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.

thirdPartyFactor Property Map

(Updatable) Settings related to third-party factor

totpEnabled Boolean

(Updatable) If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication

totpSettings Property Map

(Updatable) Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on

urnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings Property Map

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication

urnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings Property Map

(Updatable) This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider

userEnrollmentDisabledFactors List<String>

(Updatable) Factors for which enrollment should be blocked for End User

yubicoOtpEnabled Boolean

(Updatable) If true, indicates that the Yubico OTP is enabled for authentication

Supporting Types

DomainsAuthenticationFactorSettingBypassCodeSettings

HelpDeskCodeExpiryInMins int

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

HelpDeskGenerationEnabled bool

(Updatable) If true, indicates that help desk bypass code generation is enabled

HelpDeskMaxUsage int

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

Length int

(Updatable) Exact length of the bypass code to be generated

MaxActive int

(Updatable) The maximum number of bypass codes that can be issued to any user

SelfServiceGenerationEnabled bool

(Updatable) If true, indicates that self-service bypass code generation is enabled

HelpDeskCodeExpiryInMins int

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

HelpDeskGenerationEnabled bool

(Updatable) If true, indicates that help desk bypass code generation is enabled

HelpDeskMaxUsage int

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

Length int

(Updatable) Exact length of the bypass code to be generated

MaxActive int

(Updatable) The maximum number of bypass codes that can be issued to any user

SelfServiceGenerationEnabled bool

(Updatable) If true, indicates that self-service bypass code generation is enabled

helpDeskCodeExpiryInMins Integer

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

helpDeskGenerationEnabled Boolean

(Updatable) If true, indicates that help desk bypass code generation is enabled

helpDeskMaxUsage Integer

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

length Integer

(Updatable) Exact length of the bypass code to be generated

maxActive Integer

(Updatable) The maximum number of bypass codes that can be issued to any user

selfServiceGenerationEnabled Boolean

(Updatable) If true, indicates that self-service bypass code generation is enabled

helpDeskCodeExpiryInMins number

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

helpDeskGenerationEnabled boolean

(Updatable) If true, indicates that help desk bypass code generation is enabled

helpDeskMaxUsage number

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

length number

(Updatable) Exact length of the bypass code to be generated

maxActive number

(Updatable) The maximum number of bypass codes that can be issued to any user

selfServiceGenerationEnabled boolean

(Updatable) If true, indicates that self-service bypass code generation is enabled

help_desk_code_expiry_in_mins int

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

help_desk_generation_enabled bool

(Updatable) If true, indicates that help desk bypass code generation is enabled

help_desk_max_usage int

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

length int

(Updatable) Exact length of the bypass code to be generated

max_active int

(Updatable) The maximum number of bypass codes that can be issued to any user

self_service_generation_enabled bool

(Updatable) If true, indicates that self-service bypass code generation is enabled

helpDeskCodeExpiryInMins Number

(Updatable) Expiry (in minutes) of any bypass code that is generated by the help desk

helpDeskGenerationEnabled Boolean

(Updatable) If true, indicates that help desk bypass code generation is enabled

helpDeskMaxUsage Number

(Updatable) The maximum number of times that any bypass code that is generated by the help desk can be used

length Number

(Updatable) Exact length of the bypass code to be generated

maxActive Number

(Updatable) The maximum number of bypass codes that can be issued to any user

selfServiceGenerationEnabled Boolean

(Updatable) If true, indicates that self-service bypass code generation is enabled

DomainsAuthenticationFactorSettingClientAppSettings

DeviceProtectionPolicy string

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

InitialLockoutPeriodInSecs int

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

KeyPairLength int

(Updatable) The size of the key that the system uses to generate the public-private key pair

LockoutEscalationPattern string

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

MaxFailuresBeforeLockout int

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

MaxFailuresBeforeWarning int

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

MaxLockoutIntervalInSecs int

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

MinPinLength int

(Updatable) Minimum length of the Personal Identification Number (PIN)

PolicyUpdateFreqInDays int

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

RequestSigningAlgo string

(Updatable) Indicates which algorithm the system will use to sign requests

SharedSecretEncoding string

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

UnlockAppForEachRequestEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

UnlockAppIntervalInSecs int

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

UnlockOnAppForegroundEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

UnlockOnAppStartEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

DeviceProtectionPolicy string

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

InitialLockoutPeriodInSecs int

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

KeyPairLength int

(Updatable) The size of the key that the system uses to generate the public-private key pair

LockoutEscalationPattern string

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

MaxFailuresBeforeLockout int

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

MaxFailuresBeforeWarning int

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

MaxLockoutIntervalInSecs int

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

MinPinLength int

(Updatable) Minimum length of the Personal Identification Number (PIN)

PolicyUpdateFreqInDays int

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

RequestSigningAlgo string

(Updatable) Indicates which algorithm the system will use to sign requests

SharedSecretEncoding string

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

UnlockAppForEachRequestEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

UnlockAppIntervalInSecs int

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

UnlockOnAppForegroundEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

UnlockOnAppStartEnabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

deviceProtectionPolicy String

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

initialLockoutPeriodInSecs Integer

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

keyPairLength Integer

(Updatable) The size of the key that the system uses to generate the public-private key pair

lockoutEscalationPattern String

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

maxFailuresBeforeLockout Integer

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

maxFailuresBeforeWarning Integer

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

maxLockoutIntervalInSecs Integer

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

minPinLength Integer

(Updatable) Minimum length of the Personal Identification Number (PIN)

policyUpdateFreqInDays Integer

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

requestSigningAlgo String

(Updatable) Indicates which algorithm the system will use to sign requests

sharedSecretEncoding String

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

unlockAppForEachRequestEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockAppIntervalInSecs Integer

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

unlockOnAppForegroundEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockOnAppStartEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

deviceProtectionPolicy string

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

initialLockoutPeriodInSecs number

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

keyPairLength number

(Updatable) The size of the key that the system uses to generate the public-private key pair

lockoutEscalationPattern string

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

maxFailuresBeforeLockout number

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

maxFailuresBeforeWarning number

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

maxLockoutIntervalInSecs number

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

minPinLength number

(Updatable) Minimum length of the Personal Identification Number (PIN)

policyUpdateFreqInDays number

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

requestSigningAlgo string

(Updatable) Indicates which algorithm the system will use to sign requests

sharedSecretEncoding string

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

unlockAppForEachRequestEnabled boolean

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockAppIntervalInSecs number

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

unlockOnAppForegroundEnabled boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockOnAppStartEnabled boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

device_protection_policy str

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

initial_lockout_period_in_secs int

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

key_pair_length int

(Updatable) The size of the key that the system uses to generate the public-private key pair

lockout_escalation_pattern str

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

max_failures_before_lockout int

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

max_failures_before_warning int

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

max_lockout_interval_in_secs int

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

min_pin_length int

(Updatable) Minimum length of the Personal Identification Number (PIN)

policy_update_freq_in_days int

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

request_signing_algo str

(Updatable) Indicates which algorithm the system will use to sign requests

shared_secret_encoding str

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

unlock_app_for_each_request_enabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlock_app_interval_in_secs int

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

unlock_on_app_foreground_enabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlock_on_app_start_enabled bool

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

deviceProtectionPolicy String

(Updatable) Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.

initialLockoutPeriodInSecs Number

(Updatable) The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures

keyPairLength Number

(Updatable) The size of the key that the system uses to generate the public-private key pair

lockoutEscalationPattern String

(Updatable) The pattern of escalation that the system follows, in locking a particular user out of the service.

maxFailuresBeforeLockout Number

(Updatable) The maximum number of times that a particular user can fail to login before the system locks that user out of the service

maxFailuresBeforeWarning Number

(Updatable) The maximum number of login failures that the system will allow before raising a warning and sending an alert via email

maxLockoutIntervalInSecs Number

(Updatable) The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate

minPinLength Number

(Updatable) Minimum length of the Personal Identification Number (PIN)

policyUpdateFreqInDays Number

(Updatable) The period of time in days after which a client should refresh its policy by re-reading that policy from the server

requestSigningAlgo String

(Updatable) Indicates which algorithm the system will use to sign requests

sharedSecretEncoding String

(Updatable) Indicates the type of encoding that the system should use to generate a shared secret

unlockAppForEachRequestEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockAppIntervalInSecs Number

(Updatable) Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.

unlockOnAppForegroundEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

unlockOnAppStartEnabled Boolean

(Updatable) If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.

DomainsAuthenticationFactorSettingCompliancePolicy

Action string

(Updatable) The action to be taken if the value of the attribute is not as expected

Name string

(Updatable) The name of the attribute being evaluated

Value string

(Updatable) Value of the tag.

Action string

(Updatable) The action to be taken if the value of the attribute is not as expected

Name string

(Updatable) The name of the attribute being evaluated

Value string

(Updatable) Value of the tag.

action String

(Updatable) The action to be taken if the value of the attribute is not as expected

name String

(Updatable) The name of the attribute being evaluated

value String

(Updatable) Value of the tag.

action string

(Updatable) The action to be taken if the value of the attribute is not as expected

name string

(Updatable) The name of the attribute being evaluated

value string

(Updatable) Value of the tag.

action str

(Updatable) The action to be taken if the value of the attribute is not as expected

name str

(Updatable) The name of the attribute being evaluated

value str

(Updatable) Value of the tag.

action String

(Updatable) The action to be taken if the value of the attribute is not as expected

name String

(Updatable) The name of the attribute being evaluated

value String

(Updatable) Value of the tag.

DomainsAuthenticationFactorSettingEmailSettings

EmailLinkEnabled bool

(Updatable) Specifies whether Email link is enabled or not.

EmailLinkCustomUrl string

(Updatable) Custom redirect Url which will be used in email link

EmailLinkEnabled bool

(Updatable) Specifies whether Email link is enabled or not.

EmailLinkCustomUrl string

(Updatable) Custom redirect Url which will be used in email link

emailLinkEnabled Boolean

(Updatable) Specifies whether Email link is enabled or not.

emailLinkCustomUrl String

(Updatable) Custom redirect Url which will be used in email link

emailLinkEnabled boolean

(Updatable) Specifies whether Email link is enabled or not.

emailLinkCustomUrl string

(Updatable) Custom redirect Url which will be used in email link

email_link_enabled bool

(Updatable) Specifies whether Email link is enabled or not.

email_link_custom_url str

(Updatable) Custom redirect Url which will be used in email link

emailLinkEnabled Boolean

(Updatable) Specifies whether Email link is enabled or not.

emailLinkCustomUrl String

(Updatable) Custom redirect Url which will be used in email link

DomainsAuthenticationFactorSettingEndpointRestrictions

MaxEndpointTrustDurationInDays int

(Updatable) Maximum number of days until an endpoint can be trusted

MaxEnrolledDevices int

(Updatable) Maximum number of enrolled devices per user

MaxIncorrectAttempts int

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

MaxTrustedEndpoints int

(Updatable) Max number of trusted endpoints per user

TrustedEndpointsEnabled bool

(Updatable) Specify if trusted endpoints are enabled

MaxEndpointTrustDurationInDays int

(Updatable) Maximum number of days until an endpoint can be trusted

MaxEnrolledDevices int

(Updatable) Maximum number of enrolled devices per user

MaxIncorrectAttempts int

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

MaxTrustedEndpoints int

(Updatable) Max number of trusted endpoints per user

TrustedEndpointsEnabled bool

(Updatable) Specify if trusted endpoints are enabled

maxEndpointTrustDurationInDays Integer

(Updatable) Maximum number of days until an endpoint can be trusted

maxEnrolledDevices Integer

(Updatable) Maximum number of enrolled devices per user

maxIncorrectAttempts Integer

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

maxTrustedEndpoints Integer

(Updatable) Max number of trusted endpoints per user

trustedEndpointsEnabled Boolean

(Updatable) Specify if trusted endpoints are enabled

maxEndpointTrustDurationInDays number

(Updatable) Maximum number of days until an endpoint can be trusted

maxEnrolledDevices number

(Updatable) Maximum number of enrolled devices per user

maxIncorrectAttempts number

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

maxTrustedEndpoints number

(Updatable) Max number of trusted endpoints per user

trustedEndpointsEnabled boolean

(Updatable) Specify if trusted endpoints are enabled

max_endpoint_trust_duration_in_days int

(Updatable) Maximum number of days until an endpoint can be trusted

max_enrolled_devices int

(Updatable) Maximum number of enrolled devices per user

max_incorrect_attempts int

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

max_trusted_endpoints int

(Updatable) Max number of trusted endpoints per user

trusted_endpoints_enabled bool

(Updatable) Specify if trusted endpoints are enabled

maxEndpointTrustDurationInDays Number

(Updatable) Maximum number of days until an endpoint can be trusted

maxEnrolledDevices Number

(Updatable) Maximum number of enrolled devices per user

maxIncorrectAttempts Number

(Updatable) An integer that represents the maximum number of failed MFA logins before an account is locked

maxTrustedEndpoints Number

(Updatable) Max number of trusted endpoints per user

trustedEndpointsEnabled Boolean

(Updatable) Specify if trusted endpoints are enabled

DomainsAuthenticationFactorSettingIdcsCreatedBy

Value string

(Updatable) Value of the tag.

Display string

(Updatable) The displayName of the User or App who modified this Resource

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

Ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

Type string

(Updatable) The type of resource, User or App, that modified this Resource

Value string

(Updatable) Value of the tag.

Display string

(Updatable) The displayName of the User or App who modified this Resource

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

Ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

Type string

(Updatable) The type of resource, User or App, that modified this Resource

value String

(Updatable) Value of the tag.

display String

(Updatable) The displayName of the User or App who modified this Resource

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref String

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type String

(Updatable) The type of resource, User or App, that modified this Resource

value string

(Updatable) Value of the tag.

display string

(Updatable) The displayName of the User or App who modified this Resource

ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type string

(Updatable) The type of resource, User or App, that modified this Resource

value str

(Updatable) Value of the tag.

display str

(Updatable) The displayName of the User or App who modified this Resource

ocid str

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref str

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type str

(Updatable) The type of resource, User or App, that modified this Resource

value String

(Updatable) Value of the tag.

display String

(Updatable) The displayName of the User or App who modified this Resource

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref String

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type String

(Updatable) The type of resource, User or App, that modified this Resource

DomainsAuthenticationFactorSettingIdcsLastModifiedBy

Value string

(Updatable) Value of the tag.

Display string

(Updatable) The displayName of the User or App who modified this Resource

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

Ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

Type string

(Updatable) The type of resource, User or App, that modified this Resource

Value string

(Updatable) Value of the tag.

Display string

(Updatable) The displayName of the User or App who modified this Resource

Ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

Ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

Type string

(Updatable) The type of resource, User or App, that modified this Resource

value String

(Updatable) Value of the tag.

display String

(Updatable) The displayName of the User or App who modified this Resource

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref String

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type String

(Updatable) The type of resource, User or App, that modified this Resource

value string

(Updatable) Value of the tag.

display string

(Updatable) The displayName of the User or App who modified this Resource

ocid string

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref string

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type string

(Updatable) The type of resource, User or App, that modified this Resource

value str

(Updatable) Value of the tag.

display str

(Updatable) The displayName of the User or App who modified this Resource

ocid str

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref str

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type str

(Updatable) The type of resource, User or App, that modified this Resource

value String

(Updatable) Value of the tag.

display String

(Updatable) The displayName of the User or App who modified this Resource

ocid String

(Updatable) Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.

ref String

(Updatable) The URI of the SCIM resource that represents the User or App who modified this Resource

type String

(Updatable) The type of resource, User or App, that modified this Resource

DomainsAuthenticationFactorSettingIdentityStoreSettings

MobileNumberEnabled bool

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

MobileNumberUpdateEnabled bool

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

MobileNumberEnabled bool

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

MobileNumberUpdateEnabled bool

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

mobileNumberEnabled Boolean

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

mobileNumberUpdateEnabled Boolean

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

mobileNumberEnabled boolean

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

mobileNumberUpdateEnabled boolean

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

mobile_number_enabled bool

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

mobile_number_update_enabled bool

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

mobileNumberEnabled Boolean

(Updatable) If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store

mobileNumberUpdateEnabled Boolean

(Updatable) If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile

DomainsAuthenticationFactorSettingMeta

Created string

(Updatable) The DateTime the Resource was added to the Service Provider

LastModified string

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

Location string

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

ResourceType string

(Updatable) Name of the resource type of the resource--for example, Users or Groups

Version string

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

Created string

(Updatable) The DateTime the Resource was added to the Service Provider

LastModified string

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

Location string

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

ResourceType string

(Updatable) Name of the resource type of the resource--for example, Users or Groups

Version string

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String

(Updatable) The DateTime the Resource was added to the Service Provider

lastModified String

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

location String

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

resourceType String

(Updatable) Name of the resource type of the resource--for example, Users or Groups

version String

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created string

(Updatable) The DateTime the Resource was added to the Service Provider

lastModified string

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

location string

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

resourceType string

(Updatable) Name of the resource type of the resource--for example, Users or Groups

version string

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created str

(Updatable) The DateTime the Resource was added to the Service Provider

last_modified str

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

location str

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

resource_type str

(Updatable) Name of the resource type of the resource--for example, Users or Groups

version str

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

created String

(Updatable) The DateTime the Resource was added to the Service Provider

lastModified String

(Updatable) The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.

location String

(Updatable) The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.

resourceType String

(Updatable) Name of the resource type of the resource--for example, Users or Groups

version String

(Updatable) The version of the Resource being returned. This value must be the same as the ETag HTTP response header.

DomainsAuthenticationFactorSettingNotificationSettings

PullEnabled bool

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

PullEnabled bool

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

pullEnabled Boolean

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

pullEnabled boolean

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

pull_enabled bool

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

pullEnabled Boolean

(Updatable) If true, indicates that the Mobile App Pull Notification channel is enabled for authentication

DomainsAuthenticationFactorSettingTag

Key string

(Updatable) Key or name of the tag.

Value string

(Updatable) Value of the tag.

Key string

(Updatable) Key or name of the tag.

Value string

(Updatable) Value of the tag.

key String

(Updatable) Key or name of the tag.

value String

(Updatable) Value of the tag.

key string

(Updatable) Key or name of the tag.

value string

(Updatable) Value of the tag.

key str

(Updatable) Key or name of the tag.

value str

(Updatable) Value of the tag.

key String

(Updatable) Key or name of the tag.

value String

(Updatable) Value of the tag.

DomainsAuthenticationFactorSettingThirdPartyFactor

DuoSecurity bool

(Updatable) To enable Duo Security factor

DuoSecurity bool

(Updatable) To enable Duo Security factor

duoSecurity Boolean

(Updatable) To enable Duo Security factor

duoSecurity boolean

(Updatable) To enable Duo Security factor

duo_security bool

(Updatable) To enable Duo Security factor

duoSecurity Boolean

(Updatable) To enable Duo Security factor

DomainsAuthenticationFactorSettingTotpSettings

EmailOtpValidityDurationInMins int

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

EmailPasscodeLength int

(Updatable) Exact length of the email one-time passcode.

HashingAlgorithm string

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

JwtValidityDurationInSecs int

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

KeyRefreshIntervalInDays int

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

PasscodeLength int

(Updatable) Exact length of the One-Time Passcode that the system should generate

SmsOtpValidityDurationInMins int

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

SmsPasscodeLength int

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

TimeStepInSecs int

(Updatable) Time (in secs) to be used as the time step

TimeStepTolerance int

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

EmailOtpValidityDurationInMins int

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

EmailPasscodeLength int

(Updatable) Exact length of the email one-time passcode.

HashingAlgorithm string

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

JwtValidityDurationInSecs int

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

KeyRefreshIntervalInDays int

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

PasscodeLength int

(Updatable) Exact length of the One-Time Passcode that the system should generate

SmsOtpValidityDurationInMins int

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

SmsPasscodeLength int

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

TimeStepInSecs int

(Updatable) Time (in secs) to be used as the time step

TimeStepTolerance int

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

emailOtpValidityDurationInMins Integer

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

emailPasscodeLength Integer

(Updatable) Exact length of the email one-time passcode.

hashingAlgorithm String

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

jwtValidityDurationInSecs Integer

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

keyRefreshIntervalInDays Integer

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

passcodeLength Integer

(Updatable) Exact length of the One-Time Passcode that the system should generate

smsOtpValidityDurationInMins Integer

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

smsPasscodeLength Integer

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

timeStepInSecs Integer

(Updatable) Time (in secs) to be used as the time step

timeStepTolerance Integer

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

emailOtpValidityDurationInMins number

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

emailPasscodeLength number

(Updatable) Exact length of the email one-time passcode.

hashingAlgorithm string

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

jwtValidityDurationInSecs number

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

keyRefreshIntervalInDays number

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

passcodeLength number

(Updatable) Exact length of the One-Time Passcode that the system should generate

smsOtpValidityDurationInMins number

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

smsPasscodeLength number

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

timeStepInSecs number

(Updatable) Time (in secs) to be used as the time step

timeStepTolerance number

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

email_otp_validity_duration_in_mins int

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

email_passcode_length int

(Updatable) Exact length of the email one-time passcode.

hashing_algorithm str

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

jwt_validity_duration_in_secs int

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

key_refresh_interval_in_days int

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

passcode_length int

(Updatable) Exact length of the One-Time Passcode that the system should generate

sms_otp_validity_duration_in_mins int

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

sms_passcode_length int

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

time_step_in_secs int

(Updatable) Time (in secs) to be used as the time step

time_step_tolerance int

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

emailOtpValidityDurationInMins Number

(Updatable) The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.

emailPasscodeLength Number

(Updatable) Exact length of the email one-time passcode.

hashingAlgorithm String

(Updatable) The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.

jwtValidityDurationInSecs Number

(Updatable) The period of time (in seconds) that a JSON Web Token (JWT) is valid

keyRefreshIntervalInDays Number

(Updatable) The duration of time (in days) after which the shared secret has to be refreshed

passcodeLength Number

(Updatable) Exact length of the One-Time Passcode that the system should generate

smsOtpValidityDurationInMins Number

(Updatable) The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid

smsPasscodeLength Number

(Updatable) Exact length of the Short Message Service (SMS) One-Time Passcode

timeStepInSecs Number

(Updatable) Time (in secs) to be used as the time step

timeStepTolerance Number

(Updatable) The tolerance/step-size that the system should use when validating a One-Time Passcode

DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSettings

Attestation string

(Updatable) Attribute used to define the type of attestation required.

AuthenticatorSelectionAttachment string

(Updatable) Attribute used to define authenticator selection attachment.

AuthenticatorSelectionRequireResidentKey bool

(Updatable) Flag used to indicate authenticator selection is required or not

AuthenticatorSelectionResidentKey string

(Updatable) Attribute used to define authenticator selection resident key requirement.

AuthenticatorSelectionUserVerification string

(Updatable) Attribute used to define authenticator selection verification.

ExcludeCredentials bool

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

PublicKeyTypes List<string>

(Updatable) List of server supported public key algorithms

Timeout int

(Updatable) Timeout for the fido authentication to complete

DomainValidationLevel int

(Updatable) Number of domain levels IDCS should use for origin comparision

Attestation string

(Updatable) Attribute used to define the type of attestation required.

AuthenticatorSelectionAttachment string

(Updatable) Attribute used to define authenticator selection attachment.

AuthenticatorSelectionRequireResidentKey bool

(Updatable) Flag used to indicate authenticator selection is required or not

AuthenticatorSelectionResidentKey string

(Updatable) Attribute used to define authenticator selection resident key requirement.

AuthenticatorSelectionUserVerification string

(Updatable) Attribute used to define authenticator selection verification.

ExcludeCredentials bool

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

PublicKeyTypes []string

(Updatable) List of server supported public key algorithms

Timeout int

(Updatable) Timeout for the fido authentication to complete

DomainValidationLevel int

(Updatable) Number of domain levels IDCS should use for origin comparision

attestation String

(Updatable) Attribute used to define the type of attestation required.

authenticatorSelectionAttachment String

(Updatable) Attribute used to define authenticator selection attachment.

authenticatorSelectionRequireResidentKey Boolean

(Updatable) Flag used to indicate authenticator selection is required or not

authenticatorSelectionResidentKey String

(Updatable) Attribute used to define authenticator selection resident key requirement.

authenticatorSelectionUserVerification String

(Updatable) Attribute used to define authenticator selection verification.

excludeCredentials Boolean

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

publicKeyTypes List<String>

(Updatable) List of server supported public key algorithms

timeout Integer

(Updatable) Timeout for the fido authentication to complete

domainValidationLevel Integer

(Updatable) Number of domain levels IDCS should use for origin comparision

attestation string

(Updatable) Attribute used to define the type of attestation required.

authenticatorSelectionAttachment string

(Updatable) Attribute used to define authenticator selection attachment.

authenticatorSelectionRequireResidentKey boolean

(Updatable) Flag used to indicate authenticator selection is required or not

authenticatorSelectionResidentKey string

(Updatable) Attribute used to define authenticator selection resident key requirement.

authenticatorSelectionUserVerification string

(Updatable) Attribute used to define authenticator selection verification.

excludeCredentials boolean

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

publicKeyTypes string[]

(Updatable) List of server supported public key algorithms

timeout number

(Updatable) Timeout for the fido authentication to complete

domainValidationLevel number

(Updatable) Number of domain levels IDCS should use for origin comparision

attestation str

(Updatable) Attribute used to define the type of attestation required.

authenticator_selection_attachment str

(Updatable) Attribute used to define authenticator selection attachment.

authenticator_selection_require_resident_key bool

(Updatable) Flag used to indicate authenticator selection is required or not

authenticator_selection_resident_key str

(Updatable) Attribute used to define authenticator selection resident key requirement.

authenticator_selection_user_verification str

(Updatable) Attribute used to define authenticator selection verification.

exclude_credentials bool

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

public_key_types Sequence[str]

(Updatable) List of server supported public key algorithms

timeout int

(Updatable) Timeout for the fido authentication to complete

domain_validation_level int

(Updatable) Number of domain levels IDCS should use for origin comparision

attestation String

(Updatable) Attribute used to define the type of attestation required.

authenticatorSelectionAttachment String

(Updatable) Attribute used to define authenticator selection attachment.

authenticatorSelectionRequireResidentKey Boolean

(Updatable) Flag used to indicate authenticator selection is required or not

authenticatorSelectionResidentKey String

(Updatable) Attribute used to define authenticator selection resident key requirement.

authenticatorSelectionUserVerification String

(Updatable) Attribute used to define authenticator selection verification.

excludeCredentials Boolean

(Updatable) Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator

publicKeyTypes List<String>

(Updatable) List of server supported public key algorithms

timeout Number

(Updatable) Timeout for the fido authentication to complete

domainValidationLevel Number

(Updatable) Number of domain levels IDCS should use for origin comparision

DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettings

duoSecuritySettings Property Map

(Updatable) Settings related to Duo Security

DomainsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingsDuoSecuritySettings

ApiHostname string

(Updatable) Hostname to access the Duo security account

IntegrationKey string

(Updatable) Integration key from Duo Security authenticator

SecretKey string

(Updatable) Secret key from Duo Security authenticator

UserMappingAttribute string

(Updatable) User attribute mapping value

AttestationKey string

(Updatable) Attestation key to attest the request and response between Duo Security

ApiHostname string

(Updatable) Hostname to access the Duo security account

IntegrationKey string

(Updatable) Integration key from Duo Security authenticator

SecretKey string

(Updatable) Secret key from Duo Security authenticator

UserMappingAttribute string

(Updatable) User attribute mapping value

AttestationKey string

(Updatable) Attestation key to attest the request and response between Duo Security

apiHostname String

(Updatable) Hostname to access the Duo security account

integrationKey String

(Updatable) Integration key from Duo Security authenticator

secretKey String

(Updatable) Secret key from Duo Security authenticator

userMappingAttribute String

(Updatable) User attribute mapping value

attestationKey String

(Updatable) Attestation key to attest the request and response between Duo Security

apiHostname string

(Updatable) Hostname to access the Duo security account

integrationKey string

(Updatable) Integration key from Duo Security authenticator

secretKey string

(Updatable) Secret key from Duo Security authenticator

userMappingAttribute string

(Updatable) User attribute mapping value

attestationKey string

(Updatable) Attestation key to attest the request and response between Duo Security

api_hostname str

(Updatable) Hostname to access the Duo security account

integration_key str

(Updatable) Integration key from Duo Security authenticator

secret_key str

(Updatable) Secret key from Duo Security authenticator

user_mapping_attribute str

(Updatable) User attribute mapping value

attestation_key str

(Updatable) Attestation key to attest the request and response between Duo Security

apiHostname String

(Updatable) Hostname to access the Duo security account

integrationKey String

(Updatable) Integration key from Duo Security authenticator

secretKey String

(Updatable) Secret key from Duo Security authenticator

userMappingAttribute String

(Updatable) User attribute mapping value

attestationKey String

(Updatable) Attestation key to attest the request and response between Duo Security

Import

AuthenticationFactorSettings can be imported using the id, e.g.

 $ pulumi import oci:Identity/domainsAuthenticationFactorSetting:DomainsAuthenticationFactorSetting test_authentication_factor_setting "idcsEndpoint/{idcsEndpoint}/authenticationFactorSettings/{authenticationFactorSettingId}"

Package Details

Repository
oci pulumi/pulumi-oci
License
Apache-2.0
Notes

This Pulumi package is based on the oci Terraform Provider.