| authenticationSessionLifetime | Integer | The amount of time in seconds before an authenticated user needs to re-authenticate. Default is 900. | [optional] |
| authenticatorActivationType | AuthenticatorActivationTypeEnum | A setting that indicates the type of token automatically created for the user when it is created. Choices are NONE, ENTRUST_SOFT_TOKEN or GOOGLE_AUTHENTICATOR. Default is ENTRUST_SOFT_TOKEN. | [optional] |
| corsEnabled | Boolean | A flag that indicates if CORS is enabled for this account. | [optional] |
| corsOrigins | List<CorsOrigin> | A list of origins that cross-origin requests are allowed from. | [optional] |
| defaultGrid | Boolean | A flag that indicates if a grid card is created for the user when it is created. | [optional] |
| defaultMobileSmartCredential | Boolean | A flag that indicates whether to automatically enroll a smart credential for the user when it is created. Default is false. | [optional] |
| defaultPassword | Boolean | A flag that indicates if a default password is created for the user when it is created. Default is true. | [optional] |
| dynamicLinkingTransactionLifetime | Integer | The amount of time in seconds before a dynamic linking transaction expired. Default is 300. | [optional] |
| enableEnhancedAuthenticationDetails | Boolean | Indicates whether to enable Enhanced Authentication Details or not. | [optional] |
| inactivityGracePeriod | Integer | The amount of time in seconds that administrators can grant for users. | [optional] |
| lockoutCount | Integer | The number of failed authentications before a user is locked out. Default is 5. | [optional] |
| lockoutLifetime | Integer | The amount of time in seconds before a user lockout expires. A value of 0 means the lockout never expires. Minimum is 0. Default is 0. | [optional] |
| lockoutMode | LockoutModeEnum | The lockout mode to use for your IntelliTrust account. The AUTHENTICATOR lockout mode means a per-authenticator lockout will be enforced. When a user locks an authenticator they can no longer use that authenticator but can still use an alternative authenticator to log in. The USER lockout mode will lock out a user if any of their authenticators have been locked. | [optional] |
| manageInactiveUsers | Boolean | Indicates whether to block users who have not authenticated for a time being. | [optional] |
| maxFIDOTokensPerUser | Integer | The maximum number of FIDO tokens that a user can have. Default is 5. | [optional] |
| maxFacesPerUser | Integer | The maximum number of Face Biometrics that a user can have. Default is 5. | [optional] |
| maxGridsPerUser | Integer | The maximum number of grids that a user can have. Default is 5. | [optional] |
| maxNumberOfPushTransactionsQueued | Integer | Maximum number of queued push transactions. Default is 1. | [optional] |
| maxSmartCredentialsPerUser | Integer | The maximum number of smart credentials that a user can have. Default is 3. | [optional] |
| maxTokensPerUser | Integer | The maximum number of tokens that a user can have. Default is 5. | [optional] |
| pushAuthenticationLifetime | Integer | The amount of time in seconds before a push authentication requires expires if a response is not received from the mobile application. Default is 300. | [optional] |
| pushTransactionLifetime | Integer | The amount of time in seconds that a push transaction can be queued. Default is 60. | [optional] |
| registrationPeriod | Integer | The user registration period in days. Default is 0. Deprecated: use the SelfServiceSettings registrationEnabled attribute. | [optional] |
| showOnboardingWizard | Boolean | Indicates whether the Get Started wizard should be shown or not. | [optional] |
| smartCredentialDefn | String | The UUID of the Smart Credential Definition to use when a user enrolls a Smart Credential. | [optional] |
| userInactivityThreshold | Integer | The amount of time in seconds for a user to be inactive. | [optional] |