Advanced Identity Cloud

KBA Verification node

Presents KBA questions to the user, collects answers to those questions, and verifies the input against the user’s stored answers.

Use this node for additional authentication when resetting a forgotten password or username.

To set the number of KBA questions, edit Configure > Security Questions > Questions > Number in the IDM admin UI.


Product Compatible?

PingOne Advanced Identity Cloud


ForgeRock Access Management (self-managed)


ForgeRock Identity Platform (self-managed)



Property Usage

KBA Attribute

The managed object attribute in which KBA questions and answers are stored.

Identity Attribute

The attribute used to identify the managed object in the underlying identity service.

Copyright © 2010-2024 ForgeRock, all rights reserved.