This content has been marked as final. Show 1 reply
OAAM policies really have little to do with the KBA framework apart from deciding to do them in the first place. You can simply call the getSecretQuestion API which is part of the OAAM native Java library.
VCryptAuth vCryptAuth = VCryptAuthUtil.getVCryptAuthInstance();
VCryptQuestion question = vCryptAuth.getSecretQuestion(userId);
Then just render the question. This of course requires the user to have registered questions in the first place.