Setting up the Challenge Set Driver

For a time now, customers have been requesting a means by which to populate Challenge Response Set questions and/or responses in an automated fashion to streamline the user experience. This document describes just one possible answer for making this possible.

For those familiar with Novell's Identity Manager product, this solution provides a specialized implementation of the Loopback driver (refer to the online documentation for more information concerning IDM specifics). The driver configuration provides a framework for setting challenge questions and responses contained in a challenge set assigned to a given user. It is a framework in the sense that it describes and exemplifies what can be done but, the burden remains on the system administrator to customize the policies on a case-by-case basis, as challenge set definitions will differ. It is suggested that you become familiar with the default configuration, and then make the necessary changes to customize the driver to your particular needs. Any further references to the configuration of the driver refers to this default configuration.

The challenge set illustrated in the driver configuration consists of seven (7) total questions: four (4) are admin defined, three (3) are user defined. Remember the definition of your challenge set(s) will most likely be different! The driver implements a single style sheet defined on the Subscriber channel's Event Transform policy set. Triggered solely on User adds, it sets responses to administrator defined questions and sets both questions and responses for user defined challenges. It can easily be modified to handle other events, as well as other object classes. A number of global configuration values (GCVs) and named passwords are used to define connection parameters, as well as questions, responses, and response attributes.