There are three built in IdPs with some settings that can (should) be edited.
Connector - which is a simplified IdP (not all fields are required) used by the Client instances running within the Connector Appliance.
NOTE
You must add the IP Pools before you can use Connector appliances.
Service - which is a simplified IdP (not all fields are required) used by the k8s service Client instances running within containers. See service users to manage the users themselves.
NOTE
You must add the IP Pools before you can use k8s service Client instances.
Local - which is a locally managed internal database. See Local users to manage the users themselves.
Below are specific fields that apply only to the local IdP.,
Connector
IP Pools
See General IdP settings.
Claims
See General IdP settings.
NOTE
Scripted (formerly on-demand) Device Claims are not available.
Local
Sign-in Settings
See General IdP settings.
Sign-in Attempts Limit
After the threshold is reached, further sign-in attempts will be blocked.
NOTE
For SSH access this can also be set. Refer to SSH command line administration
Sign-in Lockout Duration (in minutes)
After the lockout threshold is reached, further sign-in attempts will be blocked according to the configured value.
Minimum Password Length
Minimum password length for local users. Enter 0 for no limit.
Client Settings
See General IdP settings.
IP Pools
See General IdP settings.
Claims
See General IdP settings.
Service
Sign-in Settings
See General IdP settings.
NOTE
MFA at Sign-in and Admin Access not available.
Sign-in Attempts Limit
After the threshold is reached, further sign-in attempts will be blocked.
NOTE
For SSH access this can also be set. Refer to SSH command line administration
Sign-in Lockout Duration (in minutes)
After the lockout threshold is reached, further sign-in attempts will be blocked according to the configured value.
Minimum Password Length
Minimum password length for local users. Enter 0 for no limit.
Client Settings
See General IdP settings.
NOTE
Only DNS Servers and DNS Domains can be set.
IP Pools
See general idp settings.
Claims
See General IdP settings.
NOTE:
Scripted (formerly on-demand) Device Claims are not available.