If you want to specify additional controls to be used during password change (such as adding keystrokes or forcing delays between actions), you can create a change password screen template manually.
When you create a template manually, you have additional controls for specifying fields and keystrokes required for password change; essentially you specify a “script” to manage the interaction completely. This is much more powerful than accepting the typical field-to-field navigation supported by the Change Password Screen Wizard in Automatic mode, but it requires much closer study of the change password screen itself to establish the precise actions required. For example:
• Exactly how many, and what kind of, keystrokes are needed to enter the data?
• Where should the initial focus of the screen be? (physical location)
• How many tabs are required to navigate the input screen?
To create a change password screen template manually:
1 Launch the password-protected Web site or program for which you want to create a template. Move to that site’s or program’s Change Password screen.
2 In the OTS Administration Tool, select the template for that Web site or program.
3 Right-click to display that template’s context menu, then click Add Change Password Screen. OTS launches the Change Password Screen wizard.
4 Select Set up a template manually, then click Next. The wizard displays the Logon Fields page with an empty Fill in Actions list.
5 Click the Add button and then select an action from the drop-down menu.
Add as many actions to the list as are required, in the order that they are performed. This builds the “script” that emulates interaction between the user and the program. Later, this script will be used to play the prerecorded actions.
Chapter 9 - Administration Tools
One Touch SignOn Administration Tool
The following actions are available in the Fill in Actions list:
• Keystroke - Provides navigation to the first field to be filled in or between fields. It also may be used to submit the data on the Change Password screen. The list of supported keystrokes is available in the Key drop-down menu.
• Field - Specifies the field to be filled in on the Change Password screen, its type (text or password), reference (for example, relationship to the password field on logon screen) and value, i.e. how the field value is obtained.
• Delay - Specifies the delay during navigation or prior to submitting data.
This setting is useful when the system performs some actions between the screen loading and data submitting events. For some terminal applications, a delay may be required even when moving between neighbor fields on a the screen.
Note
It is recommended to estimate the required delay and then test it prior to using the script.
• Position - Moves the cursor to a specified area of Change Password screen, like a field for data input, without using keystrokes. To use the Position feature, select Position in the drop-down menu, then, using the mouse, click and drag the Target icon until the cross is located over the desired area on the screen. When the mouse button is released, the chosen coordinates will be shown in the right panel on the wizard page.
Be aware that using Position action may be sensitive to screen resolution, because the system deals with coordinates in pixels. This feature also may not be useful when user needs to scroll the window in order to move a cursor to the desired area.
6 Repeat step 5 until all the required actions (i.e. fields, cursor movements, delays, and submission action) are specified.
7 Click Next. The wizard displays the Password Policy page.
8 If desired, specify the password policy for a protected field.
Chapter 9 - Administration Tools
One Touch SignOn Administration Tool
Select the corresponding Field Policy item, and then click the button which is shown on the right side.
9 In the Password Policy dialog box, the following options are available:
• Password is provided by user - Allows the user to specify the new password for the Web site or program.
• Password is generated automatically - Generates a
randomized password for the user. By selecting this option, you can ensure that the user can only log on using a fingerprint.
To specify constraints on the password
format, length and uniqueness, check the Use password policy checkbox.
These requirements will be followed when the password is generated, and verified when the password is provided by the user.
The following options are available for the password length:
• Minimum password length - Specifies the maximum number of characters allowed in the password
• Maximum password length - Specifies the minimum number of characters allowed in the password
The following options are available for the password contents:
• Letters and numbers - Allows any combination of letters and/or numbers.
• Letters only - Allows letters only.
• Numbers only - Allows numbers only.
• Letters and numbers with special characters - Allows passwords that contain at least one number or at least one letter, and at least one special character is required. Special characters include symbols such as
!\"#$%&'()*+,-./:;<=>?[\\]^_`{|}~@. Spaces are not allowed.
Chapter 9 - Administration Tools
One Touch SignOn Administration Tool
• Letters and numbers with at least one number - Allows passwords with any combination of letters and numbers, but both types must be present.
The following additional password constraints are available:
• None - No other constraints are applied to the password.
• Different from Windows password - The new password must be different from the current Windows password.
• Different from any password registered with OTS - The new password must be different from all passwords registered for fingerprint-enabled Web sites or programs by the current Windows user.
• Different from current password - The new password must be different from the current password for this Web site or program.
10 Click OK to save the changes in the Password Policy dialog box.
Note
The password policy applied in the wizard should be synchronized with that of the Web site or program.
11 On the Password Policy page, click Next.
12 On the Submit Selection page, choose the button from the list of detected buttons, which submits the data on the Change Password screen, and then click Next.
13 On the Change Password Screen Properties page, you can customize the behavior of the system during the change password operation. The following settings are available:
• User Hint - Allows customizing the text that will be shown when the user is prompted to type data into input fields for the Change Password screen.
• Windows Caption - Specifies the title of the change password screen as detected by the wizard. The caption is used by One Touch SignOn to recognize a fingerprint enabled screen. You may use wildcards to specify the changeable portion of the caption.
• Monitor Screen Changes - Enables the fingerprint software to recognize the previously trained screen in case the screen content changes in time due to system or user activity, for example, when the screen contains some
Chapter 9 - Administration Tools
One Touch SignOn Administration Tool
complex structure such as long-loading ActiveX, Flash, etc. Since most Web pages do not fall into this category, this setting is turned off by default.
• URL - Uniform Resource Locator is a unique, identifying address of any particular page on the Web. URL can be used by One Touch SignOn to recognize the previously trained screen. The drop-down menu allows you to specify the type of matching performed on the URL. By default, the URL is not used to recognize a fingerprint enabled screen.
When done configuring the Change Password Screen Properties, click Next.
14 On the Setup Complete page, click Finish to save the changes and exit the wizard.
Change password screens set up with One Touch SignOn display a
DigitalPersona icon in the title bar, as well as a balloon telling the user to touch the reader to begin the change password process.
Chapter 9 - Administration Tools
One Touch SignOn Administration Tool