7-4 Oracle Fusion Middleware Administrators Guide for Oracle Adaptive Access Manager Figure 7–1 Drop-Downs Menus The number of questions that appear on each menu, the number of categories per menu, and the number of questions that a user must register is configurable. Out-of-the-box, questions are grouped into categories. The challenge questions in the questions menus do not change unless the question set is changed. The user is required to select one question from each menu and enter answers for them. Only one question from each question menu can be registered. Validations are applied to the answers provided by the user during registration. For example, if the question, What year did you start junior high school, is assigned the Month-Day-Year MMDDYY validation, a user registering for this question is not allowed to provide April 1st 1920 for the answer. To configure the Registration Logic, you specify the settings for: ■ The question set generation – The number of questions to be registered – The number of questions per menu – The number of categories per menu The Question Set is generated based on the Registration Logic. ■ The validations that are applied to the answers For information on setting Registration Logic, see Section 7.8, Configuring the Registration Logic. How do the KBA Registration Logic Settings Affect a Customers Question Set? Example configurations are presented in the following table. Example 1, shown on line 1, results in registration menus containing 2 questions from category A and 2 questions from category B and 2 questions from category C and 1 Example QuestionMenu CategoriesMenu QuestionsCategory in a Menu 1 7 4 2+2+2+1 2 10 4 3+3+2+2 3 10 1 10 Managing Knowledge-Based Authentication 7-5 question from category D. This continues in a round robin fashion as needed. If there are any categories with an insufficient number of questions or an insufficient number of categories duplicate questions can result. The following is an example of a configuration to avoid: ■ Number of questions user registers: 3 The number of questions that a user must register. The new user registration should display the same number of question menus as the number of questions that a user must register. ■ Number of questions per menu: 5 The number of questions that appear on each menu. The new user registration should display the same number of questions in each menu as the number of categories for each menu. The total number of questions from all the menus number of questions multiplied by the questions in each menu cannot exceed the total number of questions available in the database. ■ Number of categories per menu: 5 The number of categories per menu. The new user registration should display the same number of categories for each menu as the number of questions in each menu. The Question Set is the fixed set of questions that is allotted to the user. This set is allotted at random and once for the user. This is to avoid the user from discovering all the questions. In the example, fifteen or more categories are required, each with at least one question enabled. But if there are fewer than 15 categories and one of these categories has only one question enabled, some Question Sets have that question twice. The algorithm tries to use as many available categories as possible. For example to generate a Question Set with: ■ 3 menus ■ 5 questions per menu ■ 5 categories per menu The algorithm tries to pick one question each from 15 categories if 15 categories are available. The minimum number of questions per category should be equal to the number of questions in the Question Set divided by the total number of categories. Pre-requisite for Configuring Registration Logic for Locales The deployment administrator must ensure that there are enough questions in the database for each of the supported locale as configured in OAAM Admin during deployment; otherwise, the application displays only the English language questions during registration. The number of locale-specific questions must be equal to or greater than the Questions User Will Register multiplied by the Questions per Menu multiplied by the Categories per Menu.

7.1.8 Answer Logic

Answer Logic checks to see if the answer provided by the user matches closely to the ones provided during registration.