Creating an authentication policy (Windows passwordless)
Steps
-
Go to the PingOne console and open the environment you are using for Windows Login - Passwordless.
-
In the icon menu, click the Identities icon.
-
In the menu, click Attributes.
-
In the list of attributes, locate the PingOne attribute that you mapped to ObjectSID.
-
Click the Pencil icon to edit the attribute properties.
-
Select the Enforce Unique Values check box, and confirm the choice if prompted to do so.
-
Click Save.
-
In the icon menu, click the Experiences icon.
-
In the menu, click Authentication Policies.
-
Click Add Policy.
Result:
The policy definition screen is displayed.
-
Give the policy a name.
-
For Step Type, select Windows Login Passwordless.
-
Under Match Attributes, select the attribute that you mapped to ObjectSID.
This drop-down list includes any attributes that you have specified as unique by selecting the Enforce Unique Values option.
-
Select the Offline Mode option if you want to allow users to log in when PingOne or PingID are not available.
-
Click Save to save the policy.