3.4 Setting Up a Passphrase

A SecureLogin passphrase is a question and response combination used as an alternative form of identity verification. Passphrase functionality protects SecureLogin credentials from unauthorized access and enables users to access SecureLogin in offline mode. Passphrases can also be used as a substitute authentication mode if, for example, a user forgets his or her password. Depending on your preferences, SecureLogin passphrase questions can be generated by the administrator and, or the user.

During installation, the passphrase security is enabled to enforce passphrase setup during the initial login. You can disable the passphrase policy by deselecting Use Passphrase Policy option in the Advanced Settings pane of the Administrative Management utility.

If a passphrase has previously been configured, this dialog box does not display and the installation is complete.

On initial login to SecureLogin all users are requested to save a passphrase response. It is important that this response is easy to recall because it cannot be viewed by anyone.

WARNING:Remember the passphrase answer. If you forget the answer, it cannot be accessed.

As administrator, and therefore first user of SecureLogin, you must create a passphrase question for yourself.

After installing Novell SecureLogin successfully, when you attempt to log in to the workstation, you are prompted to set your passphrase question and answer.

  1. Specify a question in the Enter a question field.

  2. Specify and answer in the Enter the answer field.

  3. Specify the answer again in the Confirm the answer field.

  4. Click OK. Your passphrase is saved and Novell SecureLogin is installed on the administration workstation.

NOTE:When you upgrade, SecureLogin stores all users data, including the user’s passphrase question and response, from the previous version, so you do not need to re-create the passphrase.

You can create passphrase questions for users to select from in a directory environment; however, because you are the first SecureLogin user, you must create your own passphrase question.