Oracle Cloud Infrastructure v2.17.0 published on Friday, Nov 15, 2024 by Pulumi
oci.Identity.getDomainsAuthenticationFactorSettings
Explore with Pulumi AI
This data source provides the list of Authentication Factor Settings in Oracle Cloud Infrastructure Identity Domains service.
Search Authentication Factor Settings
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testAuthenticationFactorSettings = oci.Identity.getDomainsAuthenticationFactorSettings({
idcsEndpoint: testDomain.url,
attributeSets: [],
attributes: "",
authorization: authenticationFactorSettingAuthorization,
resourceTypeSchemaVersion: authenticationFactorSettingResourceTypeSchemaVersion,
});
import pulumi
import pulumi_oci as oci
test_authentication_factor_settings = oci.Identity.get_domains_authentication_factor_settings(idcs_endpoint=test_domain["url"],
attribute_sets=[],
attributes="",
authorization=authentication_factor_setting_authorization,
resource_type_schema_version=authentication_factor_setting_resource_type_schema_version)
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/Identity"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := Identity.GetDomainsAuthenticationFactorSettings(ctx, &identity.GetDomainsAuthenticationFactorSettingsArgs{
IdcsEndpoint: testDomain.Url,
AttributeSets: []interface{}{},
Attributes: pulumi.StringRef(""),
Authorization: pulumi.StringRef(authenticationFactorSettingAuthorization),
ResourceTypeSchemaVersion: pulumi.StringRef(authenticationFactorSettingResourceTypeSchemaVersion),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testAuthenticationFactorSettings = Oci.Identity.GetDomainsAuthenticationFactorSettings.Invoke(new()
{
IdcsEndpoint = testDomain.Url,
AttributeSets = new() { },
Attributes = "",
Authorization = authenticationFactorSettingAuthorization,
ResourceTypeSchemaVersion = authenticationFactorSettingResourceTypeSchemaVersion,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Identity.IdentityFunctions;
import com.pulumi.oci.Identity.inputs.GetDomainsAuthenticationFactorSettingsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var testAuthenticationFactorSettings = IdentityFunctions.getDomainsAuthenticationFactorSettings(GetDomainsAuthenticationFactorSettingsArgs.builder()
.idcsEndpoint(testDomain.url())
.attributeSets()
.attributes("")
.authorization(authenticationFactorSettingAuthorization)
.resourceTypeSchemaVersion(authenticationFactorSettingResourceTypeSchemaVersion)
.build());
}
}
variables:
testAuthenticationFactorSettings:
fn::invoke:
Function: oci:Identity:getDomainsAuthenticationFactorSettings
Arguments:
idcsEndpoint: ${testDomain.url}
attributeSets: []
attributes:
authorization: ${authenticationFactorSettingAuthorization}
resourceTypeSchemaVersion: ${authenticationFactorSettingResourceTypeSchemaVersion}
Using getDomainsAuthenticationFactorSettings
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getDomainsAuthenticationFactorSettings(args: GetDomainsAuthenticationFactorSettingsArgs, opts?: InvokeOptions): Promise<GetDomainsAuthenticationFactorSettingsResult>
function getDomainsAuthenticationFactorSettingsOutput(args: GetDomainsAuthenticationFactorSettingsOutputArgs, opts?: InvokeOptions): Output<GetDomainsAuthenticationFactorSettingsResult>
def get_domains_authentication_factor_settings(attribute_sets: Optional[Sequence[str]] = None,
attributes: Optional[str] = None,
authorization: Optional[str] = None,
compartment_id: Optional[str] = None,
idcs_endpoint: Optional[str] = None,
resource_type_schema_version: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetDomainsAuthenticationFactorSettingsResult
def get_domains_authentication_factor_settings_output(attribute_sets: Optional[pulumi.Input[Sequence[pulumi.Input[str]]]] = None,
attributes: Optional[pulumi.Input[str]] = None,
authorization: Optional[pulumi.Input[str]] = None,
compartment_id: Optional[pulumi.Input[str]] = None,
idcs_endpoint: Optional[pulumi.Input[str]] = None,
resource_type_schema_version: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetDomainsAuthenticationFactorSettingsResult]
func GetDomainsAuthenticationFactorSettings(ctx *Context, args *GetDomainsAuthenticationFactorSettingsArgs, opts ...InvokeOption) (*GetDomainsAuthenticationFactorSettingsResult, error)
func GetDomainsAuthenticationFactorSettingsOutput(ctx *Context, args *GetDomainsAuthenticationFactorSettingsOutputArgs, opts ...InvokeOption) GetDomainsAuthenticationFactorSettingsResultOutput
> Note: This function is named GetDomainsAuthenticationFactorSettings
in the Go SDK.
public static class GetDomainsAuthenticationFactorSettings
{
public static Task<GetDomainsAuthenticationFactorSettingsResult> InvokeAsync(GetDomainsAuthenticationFactorSettingsArgs args, InvokeOptions? opts = null)
public static Output<GetDomainsAuthenticationFactorSettingsResult> Invoke(GetDomainsAuthenticationFactorSettingsInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetDomainsAuthenticationFactorSettingsResult> getDomainsAuthenticationFactorSettings(GetDomainsAuthenticationFactorSettingsArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: oci:Identity/getDomainsAuthenticationFactorSettings:getDomainsAuthenticationFactorSettings
arguments:
# arguments dictionary
The following arguments are supported:
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Attribute
Sets List<string> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Compartment
Id string - Resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Attribute
Sets []string - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Compartment
Id string - Resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- idcs
Endpoint String - The basic endpoint for the identity domain
- attribute
Sets List<String> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- compartment
Id String - resource
Type StringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- idcs
Endpoint string - The basic endpoint for the identity domain
- attribute
Sets string[] - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- compartment
Id string - resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- idcs_
endpoint str - The basic endpoint for the identity domain
- attribute_
sets Sequence[str] - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes str
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- str
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- compartment_
id str - resource_
type_ strschema_ version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- idcs
Endpoint String - The basic endpoint for the identity domain
- attribute
Sets List<String> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- String
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- compartment
Id String - resource
Type StringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
getDomainsAuthenticationFactorSettings Result
The following output properties are available:
- Authentication
Factor List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting> - The list of authentication_factor_settings.
- Id string
- The provider-assigned unique ID for this managed resource.
- Idcs
Endpoint string - Items
Per intPage - Schemas List<string>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- Start
Index int - Total
Results int - Attribute
Sets List<string> - Attributes string
- string
- Compartment
Id string - Resource
Type stringSchema Version
- Authentication
Factor []GetSettings Domains Authentication Factor Settings Authentication Factor Setting - The list of authentication_factor_settings.
- Id string
- The provider-assigned unique ID for this managed resource.
- Idcs
Endpoint string - Items
Per intPage - Schemas []string
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- Start
Index int - Total
Results int - Attribute
Sets []string - Attributes string
- string
- Compartment
Id string - Resource
Type stringSchema Version
- authentication
Factor List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting> - The list of authentication_factor_settings.
- id String
- The provider-assigned unique ID for this managed resource.
- idcs
Endpoint String - items
Per IntegerPage - schemas List<String>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- start
Index Integer - total
Results Integer - attribute
Sets List<String> - attributes String
- String
- compartment
Id String - resource
Type StringSchema Version
- authentication
Factor GetSettings Domains Authentication Factor Settings Authentication Factor Setting[] - The list of authentication_factor_settings.
- id string
- The provider-assigned unique ID for this managed resource.
- idcs
Endpoint string - items
Per numberPage - schemas string[]
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- start
Index number - total
Results number - attribute
Sets string[] - attributes string
- string
- compartment
Id string - resource
Type stringSchema Version
- authentication_
factor_ Sequence[identity.settings Get Domains Authentication Factor Settings Authentication Factor Setting] - The list of authentication_factor_settings.
- id str
- The provider-assigned unique ID for this managed resource.
- idcs_
endpoint str - items_
per_ intpage - schemas Sequence[str]
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- start_
index int - total_
results int - attribute_
sets Sequence[str] - attributes str
- str
- compartment_
id str - resource_
type_ strschema_ version
- authentication
Factor List<Property Map>Settings - The list of authentication_factor_settings.
- id String
- The provider-assigned unique ID for this managed resource.
- idcs
Endpoint String - items
Per NumberPage - schemas List<String>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- start
Index Number - total
Results Number - attribute
Sets List<String> - attributes String
- String
- compartment
Id String - resource
Type StringSchema Version
Supporting Types
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSetting
- Attribute
Sets List<string> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- Authentication
Factor stringSetting Id - string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Auto
Enroll boolEmail Factor Disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- Bypass
Code boolEnabled - If true, indicates that Bypass Code is enabled for authentication
- Bypass
Code List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Bypass Code Setting> - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- Client
App List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Client App Setting> - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- Compartment
Ocid string - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- Compliance
Policies List<GetDomains Authentication Factor Settings Authentication Factor Setting Compliance Policy> - Compliance Policy that defines actions to be taken when a condition is violated
- Delete
In boolProgress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- Domain
Ocid string - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- Email
Enabled bool - If true, indicates that the EMAIL channel is enabled for authentication
- Email
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Email Setting> - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- Endpoint
Restrictions List<GetDomains Authentication Factor Settings Authentication Factor Setting Endpoint Restriction> - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- Fido
Authenticator boolEnabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- Hide
Backup boolFactor Enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- Id string
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- Idcs
Created List<GetBies Domains Authentication Factor Settings Authentication Factor Setting Idcs Created By> - The User or App who created the Resource
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Idcs
Last List<GetModified Bies Domains Authentication Factor Settings Authentication Factor Setting Idcs Last Modified By> - The User or App who modified the Resource
- Idcs
Last stringUpgraded In Release - The release number when the resource was upgraded.
- Idcs
Prevented List<string>Operations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- Identity
Store List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Identity Store Setting> - Settings related to the use of a user's profile details from the identity store
- Metas
List<Get
Domains Authentication Factor Settings Authentication Factor Setting Meta> - A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- Mfa
Enabled stringCategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- Mfa
Enrollment stringType - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- Notification
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Notification Setting> - Settings related to the Mobile App Notification channel, such as pull
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Phone
Call boolEnabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- Push
Enabled bool - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- Resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Schemas List<string>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- Security
Questions boolEnabled - If true, indicates that Security Questions are enabled for authentication
- Sms
Enabled bool - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- List<Get
Domains Authentication Factor Settings Authentication Factor Setting Tag> - A list of tags on this resource.
- Tenancy
Ocid string - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- Third
Party List<GetFactors Domains Authentication Factor Settings Authentication Factor Setting Third Party Factor> - Settings related to third-party factor
- Totp
Enabled bool - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- Totp
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Totp Setting> - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- Urnietfparamsscimschemasoracleidcsextensionfido
Authentication List<GetFactor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionfido Authentication Factor Setting> - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- Urnietfparamsscimschemasoracleidcsextensionthird
Party List<GetAuthentication Factor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionthird Party Authentication Factor Setting> - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- User
Enrollment List<string>Disabled Factors - Factors for which enrollment should be blocked for End User
- Yubico
Otp boolEnabled - If true, indicates that the Yubico OTP is enabled for authentication
- Attribute
Sets []string - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- Attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- Authentication
Factor stringSetting Id - string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- Auto
Enroll boolEmail Factor Disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- Bypass
Code boolEnabled - If true, indicates that Bypass Code is enabled for authentication
- Bypass
Code []GetSettings Domains Authentication Factor Settings Authentication Factor Setting Bypass Code Setting - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- Client
App []GetSettings Domains Authentication Factor Settings Authentication Factor Setting Client App Setting - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- Compartment
Ocid string - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- Compliance
Policies []GetDomains Authentication Factor Settings Authentication Factor Setting Compliance Policy - Compliance Policy that defines actions to be taken when a condition is violated
- Delete
In boolProgress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- Domain
Ocid string - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- Email
Enabled bool - If true, indicates that the EMAIL channel is enabled for authentication
- Email
Settings []GetDomains Authentication Factor Settings Authentication Factor Setting Email Setting - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- Endpoint
Restrictions []GetDomains Authentication Factor Settings Authentication Factor Setting Endpoint Restriction - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- Fido
Authenticator boolEnabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- Hide
Backup boolFactor Enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- Id string
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- Idcs
Created []GetBies Domains Authentication Factor Settings Authentication Factor Setting Idcs Created By - The User or App who created the Resource
- Idcs
Endpoint string - The basic endpoint for the identity domain
- Idcs
Last []GetModified Bies Domains Authentication Factor Settings Authentication Factor Setting Idcs Last Modified By - The User or App who modified the Resource
- Idcs
Last stringUpgraded In Release - The release number when the resource was upgraded.
- Idcs
Prevented []stringOperations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- Identity
Store []GetSettings Domains Authentication Factor Settings Authentication Factor Setting Identity Store Setting - Settings related to the use of a user's profile details from the identity store
- Metas
[]Get
Domains Authentication Factor Settings Authentication Factor Setting Meta - A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- Mfa
Enabled stringCategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- Mfa
Enrollment stringType - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- Notification
Settings []GetDomains Authentication Factor Settings Authentication Factor Setting Notification Setting - Settings related to the Mobile App Notification channel, such as pull
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Phone
Call boolEnabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- Push
Enabled bool - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- Resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- Schemas []string
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- Security
Questions boolEnabled - If true, indicates that Security Questions are enabled for authentication
- Sms
Enabled bool - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- []Get
Domains Authentication Factor Settings Authentication Factor Setting Tag - A list of tags on this resource.
- Tenancy
Ocid string - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- Third
Party []GetFactors Domains Authentication Factor Settings Authentication Factor Setting Third Party Factor - Settings related to third-party factor
- Totp
Enabled bool - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- Totp
Settings []GetDomains Authentication Factor Settings Authentication Factor Setting Totp Setting - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- Urnietfparamsscimschemasoracleidcsextensionfido
Authentication []GetFactor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionfido Authentication Factor Setting - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- Urnietfparamsscimschemasoracleidcsextensionthird
Party []GetAuthentication Factor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionthird Party Authentication Factor Setting - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- User
Enrollment []stringDisabled Factors - Factors for which enrollment should be blocked for End User
- Yubico
Otp boolEnabled - If true, indicates that the Yubico OTP is enabled for authentication
- attribute
Sets List<String> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- authentication
Factor StringSetting Id - String
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- auto
Enroll BooleanEmail Factor Disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- bypass
Code BooleanEnabled - If true, indicates that Bypass Code is enabled for authentication
- bypass
Code List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Bypass Code Setting> - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- client
App List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Client App Setting> - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- compartment
Ocid String - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- compliance
Policies List<GetDomains Authentication Factor Settings Authentication Factor Setting Compliance Policy> - Compliance Policy that defines actions to be taken when a condition is violated
- delete
In BooleanProgress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- domain
Ocid String - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- email
Enabled Boolean - If true, indicates that the EMAIL channel is enabled for authentication
- email
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Email Setting> - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- endpoint
Restrictions List<GetDomains Authentication Factor Settings Authentication Factor Setting Endpoint Restriction> - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- fido
Authenticator BooleanEnabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- hide
Backup BooleanFactor Enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- id String
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- idcs
Created List<GetBies Domains Authentication Factor Settings Authentication Factor Setting Idcs Created By> - The User or App who created the Resource
- idcs
Endpoint String - The basic endpoint for the identity domain
- idcs
Last List<GetModified Bies Domains Authentication Factor Settings Authentication Factor Setting Idcs Last Modified By> - The User or App who modified the Resource
- idcs
Last StringUpgraded In Release - The release number when the resource was upgraded.
- idcs
Prevented List<String>Operations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- identity
Store List<GetSettings Domains Authentication Factor Settings Authentication Factor Setting Store Setting> - Settings related to the use of a user's profile details from the identity store
- metas
List<Get
Domains Authentication Factor Settings Authentication Factor Setting Meta> - A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- mfa
Enabled StringCategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- mfa
Enrollment StringType - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- notification
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Notification Setting> - Settings related to the Mobile App Notification channel, such as pull
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- phone
Call BooleanEnabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- push
Enabled Boolean - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- resource
Type StringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas List<String>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- security
Questions BooleanEnabled - If true, indicates that Security Questions are enabled for authentication
- sms
Enabled Boolean - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- List<Get
Domains Authentication Factor Settings Authentication Factor Setting Tag> - A list of tags on this resource.
- tenancy
Ocid String - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- third
Party List<GetFactors Domains Authentication Factor Settings Authentication Factor Setting Third Party Factor> - Settings related to third-party factor
- totp
Enabled Boolean - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- totp
Settings List<GetDomains Authentication Factor Settings Authentication Factor Setting Totp Setting> - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- urnietfparamsscimschemasoracleidcsextensionfido
Authentication List<GetFactor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionfido Authentication Factor Setting> - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- urnietfparamsscimschemasoracleidcsextensionthird
Party List<GetAuthentication Factor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionthird Party Authentication Factor Setting> - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- user
Enrollment List<String>Disabled Factors - Factors for which enrollment should be blocked for End User
- yubico
Otp BooleanEnabled - If true, indicates that the Yubico OTP is enabled for authentication
- attribute
Sets string[] - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes string
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- authentication
Factor stringSetting Id - string
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- auto
Enroll booleanEmail Factor Disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- bypass
Code booleanEnabled - If true, indicates that Bypass Code is enabled for authentication
- bypass
Code GetSettings Domains Authentication Factor Settings Authentication Factor Setting Bypass Code Setting[] - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- client
App GetSettings Domains Authentication Factor Settings Authentication Factor Setting Client App Setting[] - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- compartment
Ocid string - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- compliance
Policies GetDomains Authentication Factor Settings Authentication Factor Setting Compliance Policy[] - Compliance Policy that defines actions to be taken when a condition is violated
- delete
In booleanProgress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- domain
Ocid string - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- email
Enabled boolean - If true, indicates that the EMAIL channel is enabled for authentication
- email
Settings GetDomains Authentication Factor Settings Authentication Factor Setting Email Setting[] - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- endpoint
Restrictions GetDomains Authentication Factor Settings Authentication Factor Setting Endpoint Restriction[] - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- fido
Authenticator booleanEnabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- hide
Backup booleanFactor Enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- id string
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- idcs
Created GetBies Domains Authentication Factor Settings Authentication Factor Setting Idcs Created By[] - The User or App who created the Resource
- idcs
Endpoint string - The basic endpoint for the identity domain
- idcs
Last GetModified Bies Domains Authentication Factor Settings Authentication Factor Setting Idcs Last Modified By[] - The User or App who modified the Resource
- idcs
Last stringUpgraded In Release - The release number when the resource was upgraded.
- idcs
Prevented string[]Operations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- identity
Store GetSettings Domains Authentication Factor Settings Authentication Factor Setting Identity Store Setting[] - Settings related to the use of a user's profile details from the identity store
- metas
Get
Domains Authentication Factor Settings Authentication Factor Setting Meta[] - A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- mfa
Enabled stringCategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- mfa
Enrollment stringType - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- notification
Settings GetDomains Authentication Factor Settings Authentication Factor Setting Notification Setting[] - Settings related to the Mobile App Notification channel, such as pull
- ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- phone
Call booleanEnabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- push
Enabled boolean - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- resource
Type stringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas string[]
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- security
Questions booleanEnabled - If true, indicates that Security Questions are enabled for authentication
- sms
Enabled boolean - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- Get
Domains Authentication Factor Settings Authentication Factor Setting Tag[] - A list of tags on this resource.
- tenancy
Ocid string - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- third
Party GetFactors Domains Authentication Factor Settings Authentication Factor Setting Third Party Factor[] - Settings related to third-party factor
- totp
Enabled boolean - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- totp
Settings GetDomains Authentication Factor Settings Authentication Factor Setting Totp Setting[] - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- urnietfparamsscimschemasoracleidcsextensionfido
Authentication GetFactor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionfido Authentication Factor Setting[] - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- urnietfparamsscimschemasoracleidcsextensionthird
Party GetAuthentication Factor Settings Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionthird Party Authentication Factor Setting[] - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- user
Enrollment string[]Disabled Factors - Factors for which enrollment should be blocked for End User
- yubico
Otp booleanEnabled - If true, indicates that the Yubico OTP is enabled for authentication
- attribute_
sets Sequence[str] - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes str
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- authentication_
factor_ strsetting_ id - str
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- auto_
enroll_ boolemail_ factor_ disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- bypass_
code_ boolenabled - If true, indicates that Bypass Code is enabled for authentication
- bypass_
code_ Sequence[identity.settings Get Domains Authentication Factor Settings Authentication Factor Setting Bypass Code Setting] - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- client_
app_ Sequence[identity.settings Get Domains Authentication Factor Settings Authentication Factor Setting Client App Setting] - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- compartment_
ocid str - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- compliance_
policies Sequence[identity.Get Domains Authentication Factor Settings Authentication Factor Setting Compliance Policy] - Compliance Policy that defines actions to be taken when a condition is violated
- delete_
in_ boolprogress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- domain_
ocid str - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- email_
enabled bool - If true, indicates that the EMAIL channel is enabled for authentication
- email_
settings Sequence[identity.Get Domains Authentication Factor Settings Authentication Factor Setting Email Setting] - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- endpoint_
restrictions Sequence[identity.Get Domains Authentication Factor Settings Authentication Factor Setting Endpoint Restriction] - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- fido_
authenticator_ boolenabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- hide_
backup_ boolfactor_ enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- id str
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- idcs_
created_ Sequence[identity.bies Get Domains Authentication Factor Settings Authentication Factor Setting Idcs Created By] - The User or App who created the Resource
- idcs_
endpoint str - The basic endpoint for the identity domain
- idcs_
last_ Sequence[identity.modified_ bies Get Domains Authentication Factor Settings Authentication Factor Setting Idcs Last Modified By] - The User or App who modified the Resource
- idcs_
last_ strupgraded_ in_ release - The release number when the resource was upgraded.
- idcs_
prevented_ Sequence[str]operations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- identity_
store_ Sequence[identity.settings Get Domains Authentication Factor Settings Authentication Factor Setting Identity Store Setting] - Settings related to the use of a user's profile details from the identity store
- metas
Sequence[identity.
Get Domains Authentication Factor Settings Authentication Factor Setting Meta] - A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- mfa_
enabled_ strcategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- mfa_
enrollment_ strtype - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- notification_
settings Sequence[identity.Get Domains Authentication Factor Settings Authentication Factor Setting Notification Setting] - Settings related to the Mobile App Notification channel, such as pull
- ocid str
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- phone_
call_ boolenabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- push_
enabled bool - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- resource_
type_ strschema_ version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas Sequence[str]
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- security_
questions_ boolenabled - If true, indicates that Security Questions are enabled for authentication
- sms_
enabled bool - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- Sequence[identity.
Get Domains Authentication Factor Settings Authentication Factor Setting Tag] - A list of tags on this resource.
- tenancy_
ocid str - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- third_
party_ Sequence[identity.factors Get Domains Authentication Factor Settings Authentication Factor Setting Third Party Factor] - Settings related to third-party factor
- totp_
enabled bool - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- totp_
settings Sequence[identity.Get Domains Authentication Factor Settings Authentication Factor Setting Totp Setting] - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- urnietfparamsscimschemasoracleidcsextensionfido_
authentication_ Sequence[identity.factor_ settings Get Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionfido Authentication Factor Setting] - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- urnietfparamsscimschemasoracleidcsextensionthird_
party_ Sequence[identity.authentication_ factor_ settings Get Domains Authentication Factor Settings Authentication Factor Setting Urnietfparamsscimschemasoracleidcsextensionthird Party Authentication Factor Setting] - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- user_
enrollment_ Sequence[str]disabled_ factors - Factors for which enrollment should be blocked for End User
- yubico_
otp_ boolenabled - If true, indicates that the Yubico OTP is enabled for authentication
- attribute
Sets List<String> - A multi-valued list of strings indicating the return type of attribute definition. The specified set of attributes can be fetched by the return type of the attribute. One or more values can be given together to fetch more than one group of attributes. If 'attributes' query parameter is also available, union of the two is fetched. Valid values - all, always, never, request, default. Values are case-insensitive.
- attributes String
- A comma-delimited string that specifies the names of resource attributes that should be returned in the response. By default, a response that contains resource attributes contains only attributes that are defined in the schema for that resource type as returned=always or returned=default. An attribute that is defined as returned=request is returned in a response only if the request specifies its name in the value of this query parameter. If a request specifies this query parameter, the response contains the attributes that this query parameter specifies, as well as any attribute that is defined as returned=always.
- authentication
Factor StringSetting Id - String
- The Authorization field value consists of credentials containing the authentication information of the user agent for the realm of the resource being requested.
- auto
Enroll BooleanEmail Factor Disabled - If true, indicates that email will not be enrolled as a MFA factor automatically if it a account recovery factor
- bypass
Code BooleanEnabled - If true, indicates that Bypass Code is enabled for authentication
- bypass
Code List<Property Map>Settings - Settings related to the bypass code, such as bypass code length, bypass code expiry, max active bypass codes, and so on
- client
App List<Property Map>Settings - Settings related to compliance, Personal Identification Number (PIN) policy, and so on
- compartment
Ocid String - Oracle Cloud Infrastructure Compartment Id (ocid) in which the resource lives.
- compliance
Policies List<Property Map> - Compliance Policy that defines actions to be taken when a condition is violated
- delete
In BooleanProgress - A boolean flag indicating this resource in the process of being deleted. Usually set to true when synchronous deletion of the resource would take too long.
- domain
Ocid String - Oracle Cloud Infrastructure Domain Id (ocid) in which the resource lives.
- email
Enabled Boolean - If true, indicates that the EMAIL channel is enabled for authentication
- email
Settings List<Property Map> - Settings related to Email Factor, such as enabled email magic link factor, custom url for Email Link
- endpoint
Restrictions List<Property Map> - Settings that describe the set of restrictions that the system should apply to devices and trusted endpoints of a user
- fido
Authenticator BooleanEnabled - If true, indicates that the Fido Authenticator channels are enabled for authentication
- hide
Backup BooleanFactor Enabled - If true, indicates that 'Show backup factor(s)' button will be hidden during authentication
- id String
- Unique identifier for the SCIM Resource as defined by the Service Provider. Each representation of the Resource MUST include a non-empty id value. This identifier MUST be unique across the Service Provider's entire set of Resources. It MUST be a stable, non-reassignable identifier that does not change when the same Resource is returned in subsequent requests. The value of the id attribute is always issued by the Service Provider and MUST never be specified by the Service Consumer. bulkId: is a reserved keyword and MUST NOT be used in the unique identifier.
- idcs
Created List<Property Map>Bies - The User or App who created the Resource
- idcs
Endpoint String - The basic endpoint for the identity domain
- idcs
Last List<Property Map>Modified Bies - The User or App who modified the Resource
- idcs
Last StringUpgraded In Release - The release number when the resource was upgraded.
- idcs
Prevented List<String>Operations - Each value of this attribute specifies an operation that only an internal client may perform on this particular resource.
- identity
Store List<Property Map>Settings - Settings related to the use of a user's profile details from the identity store
- metas List<Property Map>
- A complex attribute that contains resource metadata. All sub-attributes are OPTIONAL.
- mfa
Enabled StringCategory - Specifies the category of people for whom Multi-Factor Authentication is enabled. This is a readOnly attribute which reflects the value of mfaEnabledCategory attribute in SsoSettings
- mfa
Enrollment StringType - Specifies if Multi-Factor Authentication enrollment is mandatory or optional for a user
- notification
Settings List<Property Map> - Settings related to the Mobile App Notification channel, such as pull
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- phone
Call BooleanEnabled - If true, indicates that the phone (PHONE_CALL) channel is enabled for authentication
- push
Enabled Boolean - If true, indicates that the Mobile App Push Notification channel is enabled for authentication
- resource
Type StringSchema Version - An endpoint-specific schema version number to use in the Request. Allowed version values are Earliest Version or Latest Version as specified in each REST API endpoint description, or any sequential number inbetween. All schema attributes/body parameters are a part of version 1. After version 1, any attributes added or deprecated will be tagged with the version that they were added to or deprecated in. If no version is provided, the latest schema version is returned.
- schemas List<String>
- REQUIRED. The schemas attribute is an array of Strings which allows introspection of the supported schema version for a SCIM representation as well any schema extensions supported by that representation. Each String value must be a unique URI. This specification defines URIs for User, Group, and a standard "enterprise" extension. All representations of SCIM schema MUST include a non-zero value array with value(s) of the URIs supported by that representation. Duplicate values MUST NOT be included. Value order is not specified and MUST not impact behavior.
- security
Questions BooleanEnabled - If true, indicates that Security Questions are enabled for authentication
- sms
Enabled Boolean - If true, indicates that the Short Message Service (SMS) channel is enabled for authentication
- List<Property Map>
- A list of tags on this resource.
- tenancy
Ocid String - Oracle Cloud Infrastructure Tenant Id (ocid) in which the resource lives.
- third
Party List<Property Map>Factors - Settings related to third-party factor
- totp
Enabled Boolean - If true, indicates that the Mobile App One Time Passcode channel is enabled for authentication
- totp
Settings List<Property Map> - Settings related to Time-Based One-Time Passcodes (TOTP), such as hashing algo, totp time step, passcode length, and so on
- urnietfparamsscimschemasoracleidcsextensionfido
Authentication List<Property Map>Factor Settings - This extension defines attributes used to manage Multi-Factor Authentication settings of fido authentication
- urnietfparamsscimschemasoracleidcsextensionthird
Party List<Property Map>Authentication Factor Settings - This extension defines attributes used to manage Multi-Factor Authentication settings of third party provider
- user
Enrollment List<String>Disabled Factors - Factors for which enrollment should be blocked for End User
- yubico
Otp BooleanEnabled - If true, indicates that the Yubico OTP is enabled for authentication
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingBypassCodeSetting
- Help
Desk intCode Expiry In Mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- Help
Desk boolGeneration Enabled - If true, indicates that help desk bypass code generation is enabled
- Help
Desk intMax Usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- Length int
- Exact length of the bypass code to be generated
- Max
Active int - The maximum number of bypass codes that can be issued to any user
- Self
Service boolGeneration Enabled - If true, indicates that self-service bypass code generation is enabled
- Help
Desk intCode Expiry In Mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- Help
Desk boolGeneration Enabled - If true, indicates that help desk bypass code generation is enabled
- Help
Desk intMax Usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- Length int
- Exact length of the bypass code to be generated
- Max
Active int - The maximum number of bypass codes that can be issued to any user
- Self
Service boolGeneration Enabled - If true, indicates that self-service bypass code generation is enabled
- help
Desk IntegerCode Expiry In Mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- help
Desk BooleanGeneration Enabled - If true, indicates that help desk bypass code generation is enabled
- help
Desk IntegerMax Usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- length Integer
- Exact length of the bypass code to be generated
- max
Active Integer - The maximum number of bypass codes that can be issued to any user
- self
Service BooleanGeneration Enabled - If true, indicates that self-service bypass code generation is enabled
- help
Desk numberCode Expiry In Mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- help
Desk booleanGeneration Enabled - If true, indicates that help desk bypass code generation is enabled
- help
Desk numberMax Usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- length number
- Exact length of the bypass code to be generated
- max
Active number - The maximum number of bypass codes that can be issued to any user
- self
Service booleanGeneration Enabled - If true, indicates that self-service bypass code generation is enabled
- help_
desk_ intcode_ expiry_ in_ mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- help_
desk_ boolgeneration_ enabled - If true, indicates that help desk bypass code generation is enabled
- help_
desk_ intmax_ usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- length int
- Exact length of the bypass code to be generated
- max_
active int - The maximum number of bypass codes that can be issued to any user
- self_
service_ boolgeneration_ enabled - If true, indicates that self-service bypass code generation is enabled
- help
Desk NumberCode Expiry In Mins - Expiry (in minutes) of any bypass code that is generated by the help desk
- help
Desk BooleanGeneration Enabled - If true, indicates that help desk bypass code generation is enabled
- help
Desk NumberMax Usage - The maximum number of times that any bypass code that is generated by the help desk can be used
- length Number
- Exact length of the bypass code to be generated
- max
Active Number - The maximum number of bypass codes that can be issued to any user
- self
Service BooleanGeneration Enabled - If true, indicates that self-service bypass code generation is enabled
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingClientAppSetting
- Device
Protection stringPolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- Initial
Lockout intPeriod In Secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- Key
Pair intLength - The size of the key that the system uses to generate the public-private key pair
- Lockout
Escalation stringPattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- Max
Failures intBefore Lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- Max
Failures intBefore Warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- Max
Lockout intInterval In Secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- Min
Pin intLength - Minimum length of the Personal Identification Number (PIN)
- Policy
Update intFreq In Days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- Request
Signing stringAlgo - Indicates which algorithm the system will use to sign requests
- string
- Indicates the type of encoding that the system should use to generate a shared secret
- Unlock
App boolFor Each Request Enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- Unlock
App intInterval In Secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- Unlock
On boolApp Foreground Enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- Unlock
On boolApp Start Enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- Device
Protection stringPolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- Initial
Lockout intPeriod In Secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- Key
Pair intLength - The size of the key that the system uses to generate the public-private key pair
- Lockout
Escalation stringPattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- Max
Failures intBefore Lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- Max
Failures intBefore Warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- Max
Lockout intInterval In Secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- Min
Pin intLength - Minimum length of the Personal Identification Number (PIN)
- Policy
Update intFreq In Days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- Request
Signing stringAlgo - Indicates which algorithm the system will use to sign requests
- string
- Indicates the type of encoding that the system should use to generate a shared secret
- Unlock
App boolFor Each Request Enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- Unlock
App intInterval In Secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- Unlock
On boolApp Foreground Enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- Unlock
On boolApp Start Enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- device
Protection StringPolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- initial
Lockout IntegerPeriod In Secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- key
Pair IntegerLength - The size of the key that the system uses to generate the public-private key pair
- lockout
Escalation StringPattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- max
Failures IntegerBefore Lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- max
Failures IntegerBefore Warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- max
Lockout IntegerInterval In Secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- min
Pin IntegerLength - Minimum length of the Personal Identification Number (PIN)
- policy
Update IntegerFreq In Days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- request
Signing StringAlgo - Indicates which algorithm the system will use to sign requests
- String
- Indicates the type of encoding that the system should use to generate a shared secret
- unlock
App BooleanFor Each Request Enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
App IntegerInterval In Secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- unlock
On BooleanApp Foreground Enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
On BooleanApp Start Enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- device
Protection stringPolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- initial
Lockout numberPeriod In Secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- key
Pair numberLength - The size of the key that the system uses to generate the public-private key pair
- lockout
Escalation stringPattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- max
Failures numberBefore Lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- max
Failures numberBefore Warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- max
Lockout numberInterval In Secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- min
Pin numberLength - Minimum length of the Personal Identification Number (PIN)
- policy
Update numberFreq In Days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- request
Signing stringAlgo - Indicates which algorithm the system will use to sign requests
- string
- Indicates the type of encoding that the system should use to generate a shared secret
- unlock
App booleanFor Each Request Enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
App numberInterval In Secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- unlock
On booleanApp Foreground Enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
On booleanApp Start Enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- device_
protection_ strpolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- initial_
lockout_ intperiod_ in_ secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- key_
pair_ intlength - The size of the key that the system uses to generate the public-private key pair
- lockout_
escalation_ strpattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- max_
failures_ intbefore_ lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- max_
failures_ intbefore_ warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- max_
lockout_ intinterval_ in_ secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- min_
pin_ intlength - Minimum length of the Personal Identification Number (PIN)
- policy_
update_ intfreq_ in_ days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- request_
signing_ stralgo - Indicates which algorithm the system will use to sign requests
- str
- Indicates the type of encoding that the system should use to generate a shared secret
- unlock_
app_ boolfor_ each_ request_ enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock_
app_ intinterval_ in_ secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- unlock_
on_ boolapp_ foreground_ enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock_
on_ boolapp_ start_ enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- device
Protection StringPolicy - Indicates what protection policy that the system applies on a device. By default, the value is NONE, which indicates that the system applies no protection policy. A value of APP_PIN indicates that the system requires a Personal Identification Number (PIN). A value of DEVICE_BIOMETRIC_OR_APP_PIN indicates that either a PIN or a biometric authentication factor is required.
- initial
Lockout NumberPeriod In Secs - The period of time in seconds that the system will lock a user out of the service after that user exceeds the maximum number of login failures
- key
Pair NumberLength - The size of the key that the system uses to generate the public-private key pair
- lockout
Escalation StringPattern - The pattern of escalation that the system follows, in locking a particular user out of the service.
- max
Failures NumberBefore Lockout - The maximum number of times that a particular user can fail to login before the system locks that user out of the service
- max
Failures NumberBefore Warning - The maximum number of login failures that the system will allow before raising a warning and sending an alert via email
- max
Lockout NumberInterval In Secs - The maximum period of time that the system will lock a particular user out of the service regardless of what the configured pattern of escalation would otherwise dictate
- min
Pin NumberLength - Minimum length of the Personal Identification Number (PIN)
- policy
Update NumberFreq In Days - The period of time in days after which a client should refresh its policy by re-reading that policy from the server
- request
Signing StringAlgo - Indicates which algorithm the system will use to sign requests
- String
- Indicates the type of encoding that the system should use to generate a shared secret
- unlock
App BooleanFor Each Request Enabled - If true, indicates that the system should require the user to unlock the client app for each request. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
App NumberInterval In Secs - Specifies the period of time in seconds after which the client App should require the user to unlock the App. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor. A value of zero means that it is disabled.
- unlock
On BooleanApp Foreground Enabled - If true, indicates that the system should require the user to unlock the client App, when the client App comes to the foreground in the display of the device. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
- unlock
On BooleanApp Start Enabled - If true, indicates that the system should require the user to unlock the client App whenever the App is started. In order to unlock the App, the user must supply a Personal Identification Number (PIN) or a biometric authentication-factor.
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingCompliancePolicy
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingEmailSetting
- Email
Link stringCustom Url - Custom redirect Url which will be used in email link
- Email
Link boolEnabled - Specifies whether Email link is enabled or not.
- Email
Link stringCustom Url - Custom redirect Url which will be used in email link
- Email
Link boolEnabled - Specifies whether Email link is enabled or not.
- email
Link StringCustom Url - Custom redirect Url which will be used in email link
- email
Link BooleanEnabled - Specifies whether Email link is enabled or not.
- email
Link stringCustom Url - Custom redirect Url which will be used in email link
- email
Link booleanEnabled - Specifies whether Email link is enabled or not.
- email_
link_ strcustom_ url - Custom redirect Url which will be used in email link
- email_
link_ boolenabled - Specifies whether Email link is enabled or not.
- email
Link StringCustom Url - Custom redirect Url which will be used in email link
- email
Link BooleanEnabled - Specifies whether Email link is enabled or not.
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingEndpointRestriction
- Max
Endpoint intTrust Duration In Days - Maximum number of days until an endpoint can be trusted
- Max
Enrolled intDevices - Maximum number of enrolled devices per user
- Max
Incorrect intAttempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- Max
Trusted intEndpoints - Max number of trusted endpoints per user
- Trusted
Endpoints boolEnabled - Specify if trusted endpoints are enabled
- Max
Endpoint intTrust Duration In Days - Maximum number of days until an endpoint can be trusted
- Max
Enrolled intDevices - Maximum number of enrolled devices per user
- Max
Incorrect intAttempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- Max
Trusted intEndpoints - Max number of trusted endpoints per user
- Trusted
Endpoints boolEnabled - Specify if trusted endpoints are enabled
- max
Endpoint IntegerTrust Duration In Days - Maximum number of days until an endpoint can be trusted
- max
Enrolled IntegerDevices - Maximum number of enrolled devices per user
- max
Incorrect IntegerAttempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- max
Trusted IntegerEndpoints - Max number of trusted endpoints per user
- trusted
Endpoints BooleanEnabled - Specify if trusted endpoints are enabled
- max
Endpoint numberTrust Duration In Days - Maximum number of days until an endpoint can be trusted
- max
Enrolled numberDevices - Maximum number of enrolled devices per user
- max
Incorrect numberAttempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- max
Trusted numberEndpoints - Max number of trusted endpoints per user
- trusted
Endpoints booleanEnabled - Specify if trusted endpoints are enabled
- max_
endpoint_ inttrust_ duration_ in_ days - Maximum number of days until an endpoint can be trusted
- max_
enrolled_ intdevices - Maximum number of enrolled devices per user
- max_
incorrect_ intattempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- max_
trusted_ intendpoints - Max number of trusted endpoints per user
- trusted_
endpoints_ boolenabled - Specify if trusted endpoints are enabled
- max
Endpoint NumberTrust Duration In Days - Maximum number of days until an endpoint can be trusted
- max
Enrolled NumberDevices - Maximum number of enrolled devices per user
- max
Incorrect NumberAttempts - An integer that represents the maximum number of failed MFA logins before an account is locked
- max
Trusted NumberEndpoints - Max number of trusted endpoints per user
- trusted
Endpoints BooleanEnabled - Specify if trusted endpoints are enabled
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingIdcsCreatedBy
- Display string
- The displayName of the User or App who modified this Resource
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- Type string
- The type of resource, User or App, that modified this Resource
- Value string
- Value of the tag.
- Display string
- The displayName of the User or App who modified this Resource
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- Type string
- The type of resource, User or App, that modified this Resource
- Value string
- Value of the tag.
- display String
- The displayName of the User or App who modified this Resource
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref String
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type String
- The type of resource, User or App, that modified this Resource
- value String
- Value of the tag.
- display string
- The displayName of the User or App who modified this Resource
- ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type string
- The type of resource, User or App, that modified this Resource
- value string
- Value of the tag.
- display str
- The displayName of the User or App who modified this Resource
- ocid str
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref str
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type str
- The type of resource, User or App, that modified this Resource
- value str
- Value of the tag.
- display String
- The displayName of the User or App who modified this Resource
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref String
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type String
- The type of resource, User or App, that modified this Resource
- value String
- Value of the tag.
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingIdcsLastModifiedBy
- Display string
- The displayName of the User or App who modified this Resource
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- Type string
- The type of resource, User or App, that modified this Resource
- Value string
- Value of the tag.
- Display string
- The displayName of the User or App who modified this Resource
- Ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- Ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- Type string
- The type of resource, User or App, that modified this Resource
- Value string
- Value of the tag.
- display String
- The displayName of the User or App who modified this Resource
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref String
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type String
- The type of resource, User or App, that modified this Resource
- value String
- Value of the tag.
- display string
- The displayName of the User or App who modified this Resource
- ocid string
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref string
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type string
- The type of resource, User or App, that modified this Resource
- value string
- Value of the tag.
- display str
- The displayName of the User or App who modified this Resource
- ocid str
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref str
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type str
- The type of resource, User or App, that modified this Resource
- value str
- Value of the tag.
- display String
- The displayName of the User or App who modified this Resource
- ocid String
- Unique Oracle Cloud Infrastructure identifier for the SCIM Resource.
- ref String
- The URI of the SCIM resource that represents the User or App who modified this Resource
- type String
- The type of resource, User or App, that modified this Resource
- value String
- Value of the tag.
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingIdentityStoreSetting
- Mobile
Number boolEnabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- Mobile
Number boolUpdate Enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
- Mobile
Number boolEnabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- Mobile
Number boolUpdate Enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
- mobile
Number BooleanEnabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- mobile
Number BooleanUpdate Enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
- mobile
Number booleanEnabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- mobile
Number booleanUpdate Enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
- mobile_
number_ boolenabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- mobile_
number_ boolupdate_ enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
- mobile
Number BooleanEnabled - If true, indicates that Multi-Factor Authentication should use the mobile number in the identity store
- mobile
Number BooleanUpdate Enabled - If true, indicates that the user can update the mobile number in the user's Multi-Factor Authentication profile
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingMeta
- Created string
- The DateTime the Resource was added to the Service Provider
- Last
Modified string - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- Location string
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- Resource
Type string - Name of the resource type of the resource--for example, Users or Groups
- Version string
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
- Created string
- The DateTime the Resource was added to the Service Provider
- Last
Modified string - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- Location string
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- Resource
Type string - Name of the resource type of the resource--for example, Users or Groups
- Version string
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
- created String
- The DateTime the Resource was added to the Service Provider
- last
Modified String - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- location String
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- resource
Type String - Name of the resource type of the resource--for example, Users or Groups
- version String
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
- created string
- The DateTime the Resource was added to the Service Provider
- last
Modified string - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- location string
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- resource
Type string - Name of the resource type of the resource--for example, Users or Groups
- version string
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
- created str
- The DateTime the Resource was added to the Service Provider
- last_
modified str - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- location str
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- resource_
type str - Name of the resource type of the resource--for example, Users or Groups
- version str
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
- created String
- The DateTime the Resource was added to the Service Provider
- last
Modified String - The most recent DateTime that the details of this Resource were updated at the Service Provider. If this Resource has never been modified since its initial creation, the value MUST be the same as the value of created. The attribute MUST be a DateTime.
- location String
- The URI of the Resource being returned. This value MUST be the same as the Location HTTP response header.
- resource
Type String - Name of the resource type of the resource--for example, Users or Groups
- version String
- The version of the Resource being returned. This value must be the same as the ETag HTTP response header.
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingNotificationSetting
- Pull
Enabled bool - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
- Pull
Enabled bool - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
- pull
Enabled Boolean - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
- pull
Enabled boolean - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
- pull_
enabled bool - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
- pull
Enabled Boolean - If true, indicates that the Mobile App Pull Notification channel is enabled for authentication
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingTag
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingThirdPartyFactor
- Duo
Security bool - To enable Duo Security factor
- Duo
Security bool - To enable Duo Security factor
- duo
Security Boolean - To enable Duo Security factor
- duo
Security boolean - To enable Duo Security factor
- duo_
security bool - To enable Duo Security factor
- duo
Security Boolean - To enable Duo Security factor
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingTotpSetting
- Email
Otp intValidity Duration In Mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- Email
Passcode intLength - Exact length of the email one-time passcode.
- Hashing
Algorithm string - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- Jwt
Validity intDuration In Secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- Key
Refresh intInterval In Days - The duration of time (in days) after which the shared secret has to be refreshed
- Passcode
Length int - Exact length of the One-Time Passcode that the system should generate
- Sms
Otp intValidity Duration In Mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- Sms
Passcode intLength - Exact length of the Short Message Service (SMS) One-Time Passcode
- Time
Step intIn Secs - Time (in secs) to be used as the time step
- Time
Step intTolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
- Email
Otp intValidity Duration In Mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- Email
Passcode intLength - Exact length of the email one-time passcode.
- Hashing
Algorithm string - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- Jwt
Validity intDuration In Secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- Key
Refresh intInterval In Days - The duration of time (in days) after which the shared secret has to be refreshed
- Passcode
Length int - Exact length of the One-Time Passcode that the system should generate
- Sms
Otp intValidity Duration In Mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- Sms
Passcode intLength - Exact length of the Short Message Service (SMS) One-Time Passcode
- Time
Step intIn Secs - Time (in secs) to be used as the time step
- Time
Step intTolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
- email
Otp IntegerValidity Duration In Mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- email
Passcode IntegerLength - Exact length of the email one-time passcode.
- hashing
Algorithm String - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- jwt
Validity IntegerDuration In Secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- key
Refresh IntegerInterval In Days - The duration of time (in days) after which the shared secret has to be refreshed
- passcode
Length Integer - Exact length of the One-Time Passcode that the system should generate
- sms
Otp IntegerValidity Duration In Mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- sms
Passcode IntegerLength - Exact length of the Short Message Service (SMS) One-Time Passcode
- time
Step IntegerIn Secs - Time (in secs) to be used as the time step
- time
Step IntegerTolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
- email
Otp numberValidity Duration In Mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- email
Passcode numberLength - Exact length of the email one-time passcode.
- hashing
Algorithm string - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- jwt
Validity numberDuration In Secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- key
Refresh numberInterval In Days - The duration of time (in days) after which the shared secret has to be refreshed
- passcode
Length number - Exact length of the One-Time Passcode that the system should generate
- sms
Otp numberValidity Duration In Mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- sms
Passcode numberLength - Exact length of the Short Message Service (SMS) One-Time Passcode
- time
Step numberIn Secs - Time (in secs) to be used as the time step
- time
Step numberTolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
- email_
otp_ intvalidity_ duration_ in_ mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- email_
passcode_ intlength - Exact length of the email one-time passcode.
- hashing_
algorithm str - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- jwt_
validity_ intduration_ in_ secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- key_
refresh_ intinterval_ in_ days - The duration of time (in days) after which the shared secret has to be refreshed
- passcode_
length int - Exact length of the One-Time Passcode that the system should generate
- sms_
otp_ intvalidity_ duration_ in_ mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- sms_
passcode_ intlength - Exact length of the Short Message Service (SMS) One-Time Passcode
- time_
step_ intin_ secs - Time (in secs) to be used as the time step
- time_
step_ inttolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
- email
Otp NumberValidity Duration In Mins - The period of time (in minutes) that a one-time passcode remains valid that the system sends by email.
- email
Passcode NumberLength - Exact length of the email one-time passcode.
- hashing
Algorithm String - The hashing algorithm to be used to calculate a One-Time Passcode. By default, the system uses SHA1.
- jwt
Validity NumberDuration In Secs - The period of time (in seconds) that a JSON Web Token (JWT) is valid
- key
Refresh NumberInterval In Days - The duration of time (in days) after which the shared secret has to be refreshed
- passcode
Length Number - Exact length of the One-Time Passcode that the system should generate
- sms
Otp NumberValidity Duration In Mins - The period of time (in minutes) for which a One-Time Passcode that the system sends by Short Message Service (SMS) or by voice remains valid
- sms
Passcode NumberLength - Exact length of the Short Message Service (SMS) One-Time Passcode
- time
Step NumberIn Secs - Time (in secs) to be used as the time step
- time
Step NumberTolerance - The tolerance/step-size that the system should use when validating a One-Time Passcode
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionfidoAuthenticationFactorSetting
- Attestation string
- Attribute used to define the type of attestation required.
- Authenticator
Selection stringAttachment - Attribute used to define authenticator selection attachment.
- Authenticator
Selection boolRequire Resident Key - Flag used to indicate authenticator selection is required or not
- Authenticator
Selection stringResident Key - Attribute used to define authenticator selection resident key requirement.
- Authenticator
Selection stringUser Verification - Attribute used to define authenticator selection verification.
- Domain
Validation intLevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- Exclude
Credentials bool - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- Public
Key List<string>Types - List of server supported public key algorithms
- Timeout int
- Timeout for the fido authentication to complete
- Attestation string
- Attribute used to define the type of attestation required.
- Authenticator
Selection stringAttachment - Attribute used to define authenticator selection attachment.
- Authenticator
Selection boolRequire Resident Key - Flag used to indicate authenticator selection is required or not
- Authenticator
Selection stringResident Key - Attribute used to define authenticator selection resident key requirement.
- Authenticator
Selection stringUser Verification - Attribute used to define authenticator selection verification.
- Domain
Validation intLevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- Exclude
Credentials bool - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- Public
Key []stringTypes - List of server supported public key algorithms
- Timeout int
- Timeout for the fido authentication to complete
- attestation String
- Attribute used to define the type of attestation required.
- authenticator
Selection StringAttachment - Attribute used to define authenticator selection attachment.
- authenticator
Selection BooleanRequire Resident Key - Flag used to indicate authenticator selection is required or not
- authenticator
Selection StringResident Key - Attribute used to define authenticator selection resident key requirement.
- authenticator
Selection StringUser Verification - Attribute used to define authenticator selection verification.
- domain
Validation IntegerLevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- exclude
Credentials Boolean - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- public
Key List<String>Types - List of server supported public key algorithms
- timeout Integer
- Timeout for the fido authentication to complete
- attestation string
- Attribute used to define the type of attestation required.
- authenticator
Selection stringAttachment - Attribute used to define authenticator selection attachment.
- authenticator
Selection booleanRequire Resident Key - Flag used to indicate authenticator selection is required or not
- authenticator
Selection stringResident Key - Attribute used to define authenticator selection resident key requirement.
- authenticator
Selection stringUser Verification - Attribute used to define authenticator selection verification.
- domain
Validation numberLevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- exclude
Credentials boolean - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- public
Key string[]Types - List of server supported public key algorithms
- timeout number
- Timeout for the fido authentication to complete
- attestation str
- Attribute used to define the type of attestation required.
- authenticator_
selection_ strattachment - Attribute used to define authenticator selection attachment.
- authenticator_
selection_ boolrequire_ resident_ key - Flag used to indicate authenticator selection is required or not
- authenticator_
selection_ strresident_ key - Attribute used to define authenticator selection resident key requirement.
- authenticator_
selection_ struser_ verification - Attribute used to define authenticator selection verification.
- domain_
validation_ intlevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- exclude_
credentials bool - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- public_
key_ Sequence[str]types - List of server supported public key algorithms
- timeout int
- Timeout for the fido authentication to complete
- attestation String
- Attribute used to define the type of attestation required.
- authenticator
Selection StringAttachment - Attribute used to define authenticator selection attachment.
- authenticator
Selection BooleanRequire Resident Key - Flag used to indicate authenticator selection is required or not
- authenticator
Selection StringResident Key - Attribute used to define authenticator selection resident key requirement.
- authenticator
Selection StringUser Verification - Attribute used to define authenticator selection verification.
- domain
Validation NumberLevel - Number of domain levels Oracle Identity Cloud Service should use for origin comparision
- exclude
Credentials Boolean - Flag used to indicate whether we need to restrict creation of multiple credentials in same authenticator
- public
Key List<String>Types - List of server supported public key algorithms
- timeout Number
- Timeout for the fido authentication to complete
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSetting
- duo
Security List<Property Map>Settings - Settings related to Duo Security
GetDomainsAuthenticationFactorSettingsAuthenticationFactorSettingUrnietfparamsscimschemasoracleidcsextensionthirdPartyAuthenticationFactorSettingDuoSecuritySetting
- Api
Hostname string - Hostname to access the Duo security account
- Attestation
Key string - Attestation key to attest the request and response between Duo Security
- Integration
Key string - Integration key from Duo Security authenticator
- Secret
Key string - Secret key from Duo Security authenticator
- User
Mapping stringAttribute - User attribute mapping value
- Api
Hostname string - Hostname to access the Duo security account
- Attestation
Key string - Attestation key to attest the request and response between Duo Security
- Integration
Key string - Integration key from Duo Security authenticator
- Secret
Key string - Secret key from Duo Security authenticator
- User
Mapping stringAttribute - User attribute mapping value
- api
Hostname String - Hostname to access the Duo security account
- attestation
Key String - Attestation key to attest the request and response between Duo Security
- integration
Key String - Integration key from Duo Security authenticator
- secret
Key String - Secret key from Duo Security authenticator
- user
Mapping StringAttribute - User attribute mapping value
- api
Hostname string - Hostname to access the Duo security account
- attestation
Key string - Attestation key to attest the request and response between Duo Security
- integration
Key string - Integration key from Duo Security authenticator
- secret
Key string - Secret key from Duo Security authenticator
- user
Mapping stringAttribute - User attribute mapping value
- api_
hostname str - Hostname to access the Duo security account
- attestation_
key str - Attestation key to attest the request and response between Duo Security
- integration_
key str - Integration key from Duo Security authenticator
- secret_
key str - Secret key from Duo Security authenticator
- user_
mapping_ strattribute - User attribute mapping value
- api
Hostname String - Hostname to access the Duo security account
- attestation
Key String - Attestation key to attest the request and response between Duo Security
- integration
Key String - Integration key from Duo Security authenticator
- secret
Key String - Secret key from Duo Security authenticator
- user
Mapping StringAttribute - User attribute mapping value
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
oci
Terraform Provider.