Default self-service policy

Learn more about the configuration and best practices baked into the default Adaptive Self-Service policy.

The default Self-Service policy is automatically assigned on a per-Application basis and is in use from the moment that you start using Strivacity, i.e. there is nothing that you need to do to ensure that you're using some best-practice customer experience and self-service workflows for your customer accounts.

Overview

With self-service policies, you can provide basic administration and troubleshooting capabilities for your customers to manage their self-service accounts.

📘
Self-service policy assignment is required for creating applications. You don't have to create a self-service policy from scratch to see it work in action. Strivacity's default self-service policy comes with pre-configured best practices that you can apply immediately to an application.

Here are the capabilities allowed for self-service accounts by default:

disabled by default: Allow customer to choose a different emal identifier, defer password input

Setting	Default Value	Description
Self-Service Policy Name	Default	This is the name of this policy that you will see wherever it's referenced within the Admin Console.
Self-Service registration
Allow Self-Service Customer Registration	On	This allows customers to sign up for customer accounts from the login component.
Require Customer to Activate Their Account	On	If enabled, customers are sent an activation link after registering to confirm their new account. ⚠Account activation is ignored in case of identity stores that only support the 'USERNAME' identifier.
Lifetime of New Customer Activation Link by Email	12 hours	The default length of time that a customer has to click the account activation link in the activation email before it expires.
Customer Invite Registration
Allow Administrators to Invite Customers	On	This allows administrators who can manage accounts to invite customers to the application the self-service policy is assigned to.
Allow Customer to Choose a Different Email Identifier	Off	The email address where the invitation is sent can automatically become the identifier of the account if the identity store supports the 'EMAIL' identifier. By enabling this option, you can allow customers to provide an email identifier that's different from the invitation email address.
Lifetime of New Customer Invite Link	72 hours	The default length of time that a customer has to create an account by clicking the invitation link on the invitation link before it expires.
Password and Username Recovery
Allow Self-Service Username Reminders	On	This allows customers to request a username reminder at the identification step of the self-service login journey.
Allow Self-Service Password Rest	On	This allows customers to reset their passwords during the login journey. Customers can use two different recovery options: At first, they're sent a secure link to their confirmed email address. After the initial request, customers are given the option to re-request password reset to their phones if they have a confirmed phone number in their profile.
Lifetime of Password Reset Link by Email	60 minutes	The default length of time that a customer has to click the password reset link in the password reset email before it expires.
Lifetime of Password Reset Passcode by Phone	6 minutes	The default length of time that a customer has to use the password reset passcode the received via phone the before it expires. Customers can ask for a passcode via text message or voice call in case of phone-based password recovery.
Length of Password Reset Passcode by Phone	6 characters	This field allows you to define the character length of the password reset passcode delivered to customers via text or voice call.
Allow Customers To Change Their Password	On	This allows customers to reset their passwords inside their self-service account under Security settings.
Self-Service Account Management
Allow Customers To Delete Their Account	On	This allows customers to terminate their account from their self-service account. 💡Before any permanent change is made, customers are sent a follow-up email to verify their decision.
Lifetime of Account Deletion Link by Email	24 hours	The default length of time that a customer has to click the account deletion link they've received in their email and to confirm their choice before the link expires.
Allow Customers to Manage Their Personal Information	On	This allows customers to edit their 'Personal Information' page in the self-service account.
Allow Customers to Manage Their Consents	On	This allows customers to view any consent that they've accepted and to opt out of any optional consents.
Allow Customers To Download Their Data	On	This setting allows customers to download their account data from their self-service accounts in the 'Privacy & Data' section.
Enable Application Launcher	On	This option adds quick access tiles to the customer's other available applications in the self-service portal under 'You applications'.
Defer Password Input	Off	This option places the password input field at the end of the customer login journey in every MFA workflow.

Updated about 1 month ago