The type of authentication the vault should be configured to allow.
Both biometric and passcode authentication should be allowed
Biometrics authentication should only be allowed
Use biometrics if it is available, otherwise use passcode
Both biometric and passcode authentication should be disabled. With this setting all data in the vault will be cleared on lock or if the app is closed. Stored data is kept only in memory.
Passcode authentication should only be allowed
Both biometric and passcode authentication will be disabled but any stored values will persist and be stored securely at rest using the keychain and will be available without needing to authenticate via passcode or biometrics when the device is unlocked.