Secret answer rules are applied during user authentication, whenever a password is changed or reset. Secret answer rules can be used to validate user answers against secret questions that are defined for the organization. Secret answer rules can also be used to validate and control the number of incorrect answers allowed to secret questions.
To create a secret answer rule, perform the following steps: