This site contains the documentation that is relevant to older WSO2 product versions and offerings.
For the latest WSO2 documentation, visit https://wso2.com/documentation/.
Managing Challenge Questions
A main part of account recovery is setting up challenge or security questions for user accounts. With the WSO2 Identity Server, you can set up challenge questions in different languages using one of the following methods:
The following tutorial guides you through a sample scenario of setting up a set of challenge questions for password recovery. Follow the instructions to set up.
Adding a challenge question set
Start the Identity Server and log in to the management console using admin/admin credentials.
Navigate to the Main tab and click on Add under Challenge Questions.
Click Add New Challenge Question Set and fill in the following fields to add a new set of challenge questions.
Click Add and you will be redirected to the following screen, which displays the newly added question set.
Claim mapping for the challenge question set
For each challenge question set that you create, create claims to store the answers to the questions in the set. To do this, follow the steps below.
After clicking the Add button, the screen that appears will contain the fully qualified name of the challenge question set. In the example above, the Set Id is "Set1", therefore the fully qualified name of the set is http://wso2.org/claims/Set1.
Navigate to Claims>Add and click Add Local Claim.
Enter the following details and select the Supported by Default checkbox to map the challenge question set to a claim in the user store. Click Add.
Claim URI: http://wso2.org/claims/Set1
Display Name: Challenge Question Set 1
Description: xxx
Mapped Attribute-User Store Domain Name: PRIMARY
Mapped Attribute-Mapped Attribute: location
Adding a challenge question
Click on Add under Challenge Questions and then click Add Challenge Question.
Fill in the following details and click Add.
Click Add to add the challenge questions
Add locale mapping to a question
The first challenge question added in the example above is in English. To add the same challenge question in another language (e.g., French), follow the steps below.
Login to the management console using admin/admin credentials.
Click on Add under Challenge Questions and then click Add Challenge Question.
Select the relevant challenge question set, e.g., http://wso2.org/claims/Set1, and select Yes for the Add Locale Mapping to a question field.
Enter the same Challenge Question Id (Q1) and select the Challenge Question Locale as French.
Enter the Q1 challenge question in French, click Add, and click Finish.
Click on the Edit button corresponding to the relevant set (http://wso2.org/claims/Set1). You will see Q1 listed twice in the two different languages as seen below.
Click Finish.
Click on List under Claims and select http://wso2.org/claims.
Select the Locality claim and click Edit. Select the Supported by Default checkbox and click Update.
Logout as admin and login as a user with user profile management permissions.
Click on List under Users and Roles and then select Users.
Click on the User Profile button corresponding to the logged in user.
Enter the language code as fr_fr to set language as French for the Locality field and click Update.
Try it out!
Login to the dashboard (https://localhost:9443/dashboard) as the user you configured in step 12 above, e.g.,kim, and click View Details under Account Recovery. Only the questions matching the locale set in the user profile appears (in this example, only the French question will appear).
Example:
Editing/updating a challenge question
Log in to the management console using admin credentials.
Click on List under Challenge Questions and click on the Edit button corresponding to the relevant challenge question set (http://wso2.org/claims/Set1).
Click on the Edit button corresponding to the challenge question you want to edit.
The field will turn yellow. Edit the question and click Update to save changes.
Click Finish.