CIBA Policy

In the context of CIBA Policy, an admin can set up operations related to Client Initiated Backchannel Authentication (CIBA) for a specific realm.

Backchannel Token Delivery Mode

This setting is mandatory and determines how the Consumption Device (CD) receives the authentication result and associated tokens.

Two modes are available - Poll and Ping, with the default value set to Poll.

Expires In

This setting mention the expiration time of the auth_req_id in seconds, starting from when the authentication request was received.

The default setting is 120 seconds, but you can adjust this duration based on your needs.

Interval

This setting specifies the time duration in seconds that the Consumption Device (CD) needs to wait for between polling requests to the token endpoint.

It's an optional configuration, with a default setting of 5 seconds.

You have the flexibility to adjust this duration according to your needs.

Authentication Requested User Hint

It's a mandatory field, which refers to the way of identifying the end-user for whom the identification is being requested.

The default option is login_hint, and currently, ZTrust only supports this method.

PreviousWebAuthn Passwordless Policy NextGroups

Last updated 6 months ago