System properties
Use system properties to enable and customize continuous authentication (CA) to meet your zero trust access security requirements.
Properties
To access the properties page, navigate to , select Properties tab.
Following are the different system properties for CA:
| Property | Description |
|---|---|
| General Properties | |
| Continuous Authentication (glide.zta.continuous_authentication.enabled) | Enable to use Continuous Authentication feature |
| Enable Debugging (glide.zta.continuous_authentication.debug.enabled) | Enable to view the debugging information related to continuous authentication. |
| High Assurance | |
| High Assurance session length (glide.zta.high_assurance.session.timeout) | Specify the high assurance session length, after which the end-users should re-authenticate. Default: 10 mins. Remarque : The value must be between 1 and 480. |
| Default high-assurance session length upon login (glide.zta.default.high_assurance.session.lifespan) | Specify the duration in minutes for the default high-assurance session length upon user login. Default value: 5 minutes. Remarque : The property is only applicable for local login. |
| Configure end-user display message (glide.zta.high_assurance.session.message) | Specify the message that is displayed to the end-user for re-authentication. Default message: One or more resources require additional authentication due to a policy created by your administrator. |
| Total times failed authentication before user account lock-out (glide.zta.high_assurance.session.max.login.failed_attempts) | Set the maximum failed authentication attempts before the users are logged out. Remarque : The value must be between 3 and 10. |
| Audit properties | |
| Total no of days to keep audit records (glide.zta.continuous_authentication.audit.lifespan) | Specify the no of days you want to save the audit records for CA. Remarque : The value must be between 1 and 180. |
| Total no. of days after which policies will be deleted after deactivated (glide.zta.continuous_authentication.policy.lifespan) | Specify the no of days after which the CA policies are deleted. |
Important :
- By default, high-assurance sessions are not required for mobile app sessions, even when a continuous authentication policy is active on source. To change this behavior and block access from mobile app sessions, update the glide.zta.high_assurance.mobile.session.allowed property value to false.
- The sys_properties, sys_continuous_auth_policy, sys_user tables are excluded for CA and cannot be added to the CA policy configuration.