Issue

In the Issuance section, you can configure the card issue and initialization settings.

Card issue

Option	Description
Maximum number of cards per user	A number that limits the number of cards a user can have. The default value is 1.
Initialize card	The card is initialized before it is issued. All data stored on the card is erased. During the card issue process, you can enable or disable initialization for a specific card.
Set random user PIN	A random user PIN is generated during the card issue process. The random PIN is generated using non-repeating characters. Configure the User PIN generation settings. User PIN generation settings Select at least one character group to be used in PIN generation: Numeric characters Uppercase letters Lowercase letters Special characters (Optionally) Specify up to 16 forbidden characters. Set the PIN length. The minimum length is 4 characters, the maximum – 31. The maximum PIN length also depends on the selected character groups. To allow an administrator to view the card PIN in the Management Console, enable the Show generated user PIN to administrator option. To allow a user to view the card PIN in the Self-Service, enable the Show generated user PIN to user option. You can send the random user PIN to the user or their manager in an email notification.
User PIN must be changed on first logon	When a user connects a card to their workstation for the first time, the user is prompted to change the card PIN. This option is only supported for eToken and IDPrime cards.
Lock card	The card is locked after it is issued. Before the user can manage the card, they are prompted to unlock it and set a new PIN.
Generate card name automatically	The card name can be set using one of the user's attributes – Common name, Logon name, Last name, E-mail, Organizational unit, or a specified string. The selected value is automatically inserted into the card name field. If the Allow editing card name option is active, the user can change the card name before the card is issued.
Require a comment to the card	When you issue a card in the Management Console, you must enter a comment.
Require tags to the card	When you issue a card in the Management Console, you must assign tags to the card.

caution

The following options are mutually exclusive:

• Lock card and Set random user PIN
• Lock card and User PIN must be changed on first logon

Card initialization

The set of initialization parameters depends on the card type. If you have not configured initialization parameters in the policy, Axidian CertiFlow applies the default parameters from the Card type settings.

Axidian CertiFlow applies the PIN complexity policies when you issue and initialize a card, and stores the policies on the card until the next initialization.

To set card initialization parameters:

1. Go to Issuance → Card initialization and click Add initialization parameters.
2. Select the card type and click OK.
3. Configure the initialization parameters.
4. Click Add.

info

If you specify the different PIN length values in the Issuance and Card initialization sections, Axidian CertiFlow applies the larger value when you issue the card.

Supported card types

By default, you can issue all types of cards registered in Axidian CertiFlow.

To define a policy for issuing cards of a specific type:

1. Go to Issuance → Allowed cards.
2. Click Add card type, select the card type name, and click Add.

The number of supported card types is not limited. To remove a card type from the allowed list, click .