Using the administrative console, define the local identity fields that suit your registration and profile management requirements.

When registration is enabled for a local identity profile, select a local identity field to be the unique identifier for the purpose of identifying the users. To enable email ownership verification, add a field to store the email address and another field to store the verification status; while the former can be any field that uses the Email or Text input control, the latter must use the Hidden input control.

  1. To access the Policies section in the administrative console, go to Authentication > Policies > Local Identity Profiles. This will open the Local Identity Profiles window configuration.
    ActionSteps
    Access the Policies section in the administrative console Go to Authentication > Policies > Local Identity Profiles. This will open the Local Identity Profiles window configuration.
    Add new local identity fields In the Local Identity Profiles window, from the Local Identify Profile Name section, select the applicable identity profile. On theFields tab, click Create New Field.
    Select one of the local identity fields as the unique identifier On the Fields tab, select the Unique ID option for the applicable field.

    Applicable and required only if registration is enabled on the Profile Info tab.

    Tip:

    Any field that uses the Checkbox, Checkbox Group, Date, or Dropdown input control cannot be chosen as the unique identifier because values from such field will likely collide as the population of users grows.

    Modify an existing local identity field On the Fields tab, click Edit for the applicable field.
    Remove an existing local identity field or to cancel the removal request On the Fields tab, click Delete or Undelete for the applicable field.
    Change the display order of the local identity fields on the registration page and the profile management page On the Fields tab, use the up and down arrows to reorder them.
    Mask local identity field values in logs for the configuration scenario where OGNL expressions might be used to map derived values into outbound single sign-on (SSO) tokens in authentication policies On the Fields tab, select the Mask all OGNL-expression generated log values check box.