Change user password with CUA

When I attempt to change a password on a CUA child, I enter tocde SU01 and enter the account. The I was to reset password via the icon. When I select the change password icon (shift+ F8) and then the popup window appear to prompting you to enter and reenter password.
After I enter new pwd twice the screen stays nothing happen pop screen stay up and no status is reported back on the status bar at the bottom.
If I open up the account and change it via logon data table the change.reset password works fine.
Any ideas?
Mikie B.

There was a similar (unconclusive) discussion recently ( Screen not getting refreshed after reseting password ), for which I found the following thread:
Password generation problem
Maybe that can help.

Similar Messages

How can i add a new user and change user'password with javamail?

how can i add a new user and change user'password from a mailserver with javamail?
email:[email protected]

Well user creation and updation is a system property..U need to go through that part...as it depends on the system you are hosting pout your application...
if it is linux...u have to use some shell programming\
bye for now let me know if this guides you or if you need some more stuff.
bye

How to change Analyzer user password with Administration API?

Hi, I would like to change Analyzer user password with Administration API. Can someone post some sample commands to do the task? I would just like to write an application to change end user's Analyzer password. As I see I would need to do the following: 1. login with admin userid/password 2. execute some method to change password for required userid. I think the input parameter should be userid (of the user I would like to change password) and new password (the new password for the user). 3. logout Can someone post some sample code (commands to execute)? Thanks, grofaty My system: Analyzer Server 7.0.1. Essbase server 7.1 Windows XP SP2 

<blockquote>quote: <hr>Originally posted by: knightrich Hello Mr. Jordan. I would like to exchange some thoughts about "housekeeping" Analyzer reports in preparation for migration from Analyzer 7.0.0.0.01472 to 9.x: ... Did you solved such a problem or do you have an idea if it could be solved with the Admin API methods? ... Migration from 7.00 to 9.x: As we heard last week the "Migration Wizard for Reports" in 9.3 should be able to migrate reports. Do you have experience or more detailed information about that Wizard? Many thanks in advance knigthrich<hr></blockquote> knighrich, I'd like to be more help, but I have no experience with System 9. I did substantial cleanup when we migrated from Analyzer 6 to Analyzer 7.1, and even more cleanup when moving up to 7.2, but our installation is smaller in scale than yours and we didn't need to automate report cleanup. You might be able to get the ownership information you need through the back door, doing a direct query on the database, but simpler might be an export users, at least from 7.0. (This facility probably doesn't exist in system 9; it was dropped in 7.2 in favor of an undocumented API) The export file is an xml file that could easily be parsed to identify reports that have the administrator as user and then a second pass to delete those with otuer ownership as well. As previously suggested, you might be able to get this by a well crafted SQL query against the repository. Procedurally, we have both public reports that have the blessing of management and are widely available, owned by a "public owner", and private reports developed by indivdual users and shared or not. Our team maintains the public reports, but not the private reports. We may be asked to make a previously private report public and take over maintenance of it. I hope that you can find a solution that meets your needs. Certainly a call to customer support to identify a poorly documented feature would be in order.

Problem with Notifications on Create User/ Change User Password

Hello,
I'm having a problem sending emails to users when an account is created in OIM.
I added a notification to the user and user's manager on the Create User task in the Xellerate User process definition but the emails are not being sent.
I know that if I create another task with the purpose of sending emails and invoke it through the response in the Create User task, it will work.
My aim is to avoid adding tasks for something OIM should be able to do OOTB.
I'm also unable to send an email when a password is updated.. I did the same thing as for the Create User and I know the task (Change User Password) is being invoked by looking at the logs but the emails aren't being sent.
Has anyone ran into such problems?
I'm having these problems in the Xellerate User process task.. i've added notifications in other process tasks (mainly approval tasks) and they are working fine.
Thanks in advance

Hi,
I am just confuse with your response.Have you added the "Password Updated" task in xellerate user provisioning process?
Now if you changing password in OIM profile it will trigger "Change User Password" task not the "Password Updated" task and even if you add "Password Updated" task on Xellerate User provisioning task you can't see this task in Resource Details.
Now assume if you added your notification on "Password Updated" task of any resource which user is provisioned to even then when you change oim password it only trigger "Change User Password" task.So try to have your notification on "Change User Password" task.
Please clarify so that I can response correctly.
Regards
Nitesh

User is not able to change his own password... Only DBA can change users password ??

Hi,
I have this problem today.I am using Oracle 8.1.7 on Solaris 2.8
A Oracle user say " SCOTT" trying to change his password but could not.. he gets the followling message
SQL> alter user scott identified by abc123;
alter user scott identified by abc123
ERROR at line 1:
ORA-28003: password verification for the specified password failed
Scott's profile has password_verfiy function. Hence i thought abc123 password was not matching with the password verify condition. Surprisingly, what ever password SCOTT tries with, he could get the same error message and could not change his password.. Ultimatly SCOTT could never change his password. How is it possible ??
It is noteworthy to mention that if i give DBA role to SOCTT then he can change his password with abc123 or any thing that satisfies with password verification function.
Now Only a user who has DBA role or a DBA could change passwords..
Can somebody through some light on it and explain what corrective action to be taken so that Users can change their password without DBA's interreption.
Thanks in advance
Regards
Srini

<PRE>
This is the description of the error message:
=============================================================================
ORA-28003 password verification for the specified password failed
Cause: The new password did not meet the necessary complexity specifications
and the PASSWORD_VERIFY_FUNCTION failed.
Action: Enter a different password. Contact the database administrator to find
out the rules for choosing the new password.
=============================================================================
it clearly says that password has to match the complexity specifications. You will not be able
to change password without meeting the complexity requirements.
DBA's can make the change to the password because if DBA's can not change the password, it could lock
you out of the database (all users including the DBA's) and you will not be able to access the
database.
Try removing the password verify function and see if you can then change the password succssfully.
</PRE>
hi Prakash,
The verify password function is standard oracle function and I do not think the current problem is any way related to the rules that were framed in verify password function. The key point here is a user could not change his own password. But a DBA or a user who has ALTER USER system privs.. can do so..
Regards
Srini

Input user password with AR?

Hi,
I've read http://www.adobe.com/products/acrobat/acrrfaq.html and other sources regarding commenting PDFs with the Acrobat Reader.
There are tools out there to encrypt a pdf-file and set a user password. If I do this the document security shows, that it is possible to add comments to the document (with the user password).
But how do I enter the user password with AR? If a master password is set, a popup windows appears after opening the document, but what is the user password good for?
There is a plugin in my AR9.0 which is for commenting PDFs.
greetings from germany
Stefan K.

Hi,
thanks Bernd,
"There are a permission password and a open password."
ok
"Owners of the open password can open the PDF document."
ok
"Owners of the permission password can change the security settings."
ok, but
- changing the permissions requires Adobe Acrobat, right? not the AReader?
- why are the document properties different in the document properties screen in AR?
see: http://users.minet.uni-jena.de/~zsk/pdfs/StundenplanAR813.png
this suggests that the permission password (user password?) is for protecting the document properties, which are listet there - not - for protecting the change of the security settings.
- why are the document properties(*) different when opening the same document via Adobe Acrobat?
see: http://users.minet.uni-jena.de/~zsk/pdfs/StundenplanA812std.png
(*) this looks like the so called document properties are not properties of the document but properties of the adobe appl. I use to open it.
this is all really confusing.
Here is my questiong again: Is it possible to add comments to a document via AR if it has a user password? -> (why does the document security window in StundenplanAR813.png show a Commenting: Allowed?? and why does a Addon in AR exisist that is called Comments??)
greetings
Stefan K.

Change User password not working in SAP ME 6.0

Hi,
In SAP ME 6.0 SP01 6.0.1.0 Counter 40, the activity "Change User Password" does not work for me or any other user.
The activity window (Netweaver) shows, but in the top it says "An error occurred - contact system administrator".
This is the output from the default trace file. Seems my user is not authorized, but where do I set this authorization?
Br,
Johan
#2.0 #2011 09 06 11:15:11:064#+0200#Error#com.sap.security.core.wd.jmxmodel.JmxModelComp#
#BC-JAS-SEC-UME#sap.com/tcsecumewduimodel#C0000AD3034800820000000100000450#9934850000000004#sap.com/tcsecumewdkit#com.sap.security.core.wd.jmxmodel.JmxModelComp#JONORD#16##380199ECD86811E088C3000000979802#ae0e9d52d86811e08e7a000000979802#ae0e9d52d86811e08e7a000000979802#0#Thread[HTTP Worker [@312363456],5,Dedicated_Application_Thread]#Plain##
public void supplyCompany(IPrivateJmxModelCompInterface.ICompanyNode node, IPrivateJmxModelCompInterface.IContextElement parentElement)
[EXCEPTION]
com.sap.engine.services.jmx.exception.JmxSecurityException: Caller JONORD not authorized, required permission missing (javax.management.MBeanPermission -\#getCompanyConceptEnabled[:SAP_J2EECluster="",j2eeType=UmeJmxServer,name=IJmxServer] invoke)
     at com.sap.engine.services.jmx.auth.UmeAuthorization.checkMBeanPermission(UmeAuthorization.java:100)
     at com.sap.engine.services.jmx.JmxServerFrame.checkMBeanPermission(JmxServerFrame.java:101)
     at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.checkMBeanPermission(MBeanServerSecurityWrapper.java:438)
     at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.invoke(MBeanServerSecurityWrapper.java:288)
     at com.sap.engine.services.jmx.ClusterInterceptor.invoke(ClusterInterceptor.java:813)
     at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:367)
     at com.sap.security.core.jmx._gen.IJmxServer$Impl.getCompanyConceptEnabled(IJmxServer.java:1415)
     at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.supplyCompany(JmxModelCompInterface.java:1498)
     at com.sap.security.core.wd.jmxmodel.wdp.InternalJmxModelCompInterface.supplyCompany(InternalJmxModelCompInterface.java:710)
     at com.sap.security.core.wd.jmxmodel.wdp.IPublicJmxModelCompInterface$ICompanyNode.doSupplyElements(IPublicJmxModelCompInterface.java:4301)
     at com.sap.tc.webdynpro.progmodel.context.DataNode.supplyElements(DataNode.java:110)
     at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
     at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
     at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
     at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
     at com.sap.tc.webdynpro.progmodel.context.MappedNode.createMappedElementList(MappedNode.java:78)
     at com.sap.tc.webdynpro.progmodel.context.MappedNode.supplyElements(MappedNode.java:71)
     at com.sap.tc.webdynpro.progmodel.context.Node.getElementListAsObject(Node.java:263)
     at com.sap.tc.webdynpro.progmodel.context.Node.getElements(Node.java:270)

Hi,
Change User Password screen is in fact user self services screen of NW UME and to access it, user must have Manage_My_Password action. Installation and Security Guide ask to assign this action to all roles.

What are the possible reasons why I cannot reactivate using my AppleID, even though I already change its password with the help of Apple personel

What are the possible reasons why I cannot reactivate my Iphone5 using my AppleID, even though I already change its password with the help Apple personel

If the password for your Apple ID works at id.apple.com > Manage Apple ID, then it's likely that the Apple ID the device wants you use is not the same as the Apple ID you are using.
Exactly what screen are you at on your iPhone? It sounds like it is in Activation Lock.

Howto: Change users password in Linux with Java

Hi, how can i write a Java program to change user acounts passwords in linux?

this is how i solved the problem:
Runtime rt = Runtime.getRuntime();
        String[] callAndArgs = { "passwd",
                                 "--stdin",
                                 "ehi" };
        try {
            String line = null;
            Process child = rt.exec(callAndArgs);
            InputStream stdin = child.getInputStream();
            InputStreamReader isr = new InputStreamReader(stdin);
            BufferedReader br = new BufferedReader(isr);
            OutputStream os = child.getOutputStream();
            PrintWriter pw = new PrintWriter(os);
            pw.println ("empty");
            pw.flush();
            if ((line = br.readLine()) != null)
                           System.out.println(line);
            pw.println("password2");
            pw.flush();
            child.waitFor();
            System.out.println("Process exit code is: " + child.exitValue());
        catch(IOException e) {
            System.err.println(
                    "IOException starting process!");
        } catch (InterruptedException e) {
            e.printStackTrace(); //To change body of catch statement use File | Settings | File Templates.
        }

Best way to create a "change user password" site?

Hi,
I want to provide my users with a page where they can change their password. I thought that I could just use the one from the system application (changepw.htm). But it doesn't feature the design2003 and my application has to have a consistent look and feel.
So I copied it and tried to get it working but that wasn't possible because it relies on an application class which I can't get working (it relies on the IF_BSP_APPLICATION_EVENTS) because I don't want to use it as a general application-class and so some methods will not be called.
It seems that the only choice left is to start my own site which will reuse most of the code from the system application class. But before I start reinventing the wheel I would like to know: How have you implemented this functionality?

Hi Deepak,
My approach was the following. I created a new controller and a new view for the password site. Then I extracted all the useful methods from the CL_BSP_LOGIN_APPLICATION class and put it in my controller class. I recycled all the translation stuff so that the page is available in different languages and I also used a lot code from the CHANGE_PW_PROCESSING method. I think it took me nearly a day to get everything working. The most annoying part was testing it because our sap system didn't allow you to change your password twice a day so I had to use lots of test user accounts
Regarding your other question. I have never worked with the BW but from a technical standpoint I am sure that it's possible to change your password when https/SSO is not enabled. But I would never allow my users to change their password when they are not using https.

Why cant i change user password or pwdlastset after delegation for only certain users in an ou?

I remembered a while ago I used delegate control to assign the ability to reset pwd and reset change on next logon. It seems to work for some users but not others in same ou. effective permissions shows I have write access to the attribute for
the user; see imgur link below. the box for change pwd at next logon is gray. attribute editor tab doesn't allow me to edit it either. domain admins can change it. I'm wondering what else I should check out cus everything I know says
I have the right to change it.
forest / domain level 2003
http://imgur.com/1VHuh7h
mydomain\Allow Reset Win Pwd was used for delegation and the user trying to change the password is a part of that group. they are also a member of account operators
Owner: mydomain\Domain Admins
Group: mydomain\Domain Admins
Access list:
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Allow mydomain\Domain Admins SPECIAL ACCESS
 READ PERMISSONS
 WRITE PERMISSIONS
 CHANGE OWNERSHIP
 CREATE CHILD
 DELETE CHILD
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
 LIST OBJECT
 CONTROL ACCESS
Allow mydomain\Enterprise Admins SPECIAL ACCESS
 READ PERMISSONS
 WRITE PERMISSIONS
 CHANGE OWNERSHIP
 CREATE CHILD
 DELETE CHILD
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
 LIST OBJECT
 CONTROL ACCESS
Allow BUILTIN\Administrators SPECIAL ACCESS
 DELETE
 READ PERMISSONS
 WRITE PERMISSIONS
 CHANGE OWNERSHIP
 CREATE CHILD
 DELETE CHILD
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
 LIST OBJECT
 CONTROL ACCESS
Allow NT AUTHORITY\Authenticated Users
 SPECIAL ACCESS
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Allow NT AUTHORITY\SYSTEM FULL CONTROL
Allow mydomain\Allow Reset Win Pwd SPECIAL ACCESS <Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS <Inherited
from parent>
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Allow BUILTIN\Terminal Server License Servers
 SPECIAL ACCESS <Inherited
from parent>
 READ PERMISSONS
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
Allow mydomain\Enterprise Admins FULL CONTROL <Inherited from parent>
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS <Inherited
from parent>
 LIST CONTENTS
Allow BUILTIN\Administrators SPECIAL ACCESS <Inherited from parent>
 DELETE
 READ PERMISSONS
 WRITE PERMISSIONS
 CHANGE OWNERSHIP
 CREATE CHILD
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
 LIST OBJECT
 CONTROL ACCESS
Allow mydomain\Delegate-Join-Domain-Rights
 SPECIAL ACCESS for computer
<Inherited from parent>
 CREATE CHILD
Allow Everyone SPECIAL ACCESS for computer <Inherited from parent>
 CREATE CHILD
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Account Restrictions
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Account Restrictions
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Logon Information
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Logon Information
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Group Membership
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for General Information
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for General Information
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Remote Access Information
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Remote Access Information
 READ PROPERTY
Allow mydomain\Cert Publishers SPECIAL ACCESS for userCertificate
 WRITE PROPERTY
 READ PROPERTY
Allow BUILTIN\Windows Authorization Access Group
 SPECIAL ACCESS for tokenGroupsGlobalAndUniversal
 READ PROPERTY
Allow BUILTIN\Terminal Server License Servers
 SPECIAL ACCESS for terminalServer
 WRITE PROPERTY
 READ PROPERTY
Allow mydomain\Allow Reset Win Pwd SPECIAL ACCESS for pwdLastSet <Inherited from parent>
 WRITE PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Account Restrictions
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Logon Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Group Membership
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for General Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Remote Access Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Terminal Server License Servers
 SPECIAL ACCESS for accountExpires
<Inherited from parent>
 WRITE PROPERTY
Allow BUILTIN\Terminal Server License Servers
 SPECIAL ACCESS for Terminal Server
License Server <Inherited from parent>
 WRITE PROPERTY
 READ PROPERTY
Allow NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS
 SPECIAL ACCESS for tokenGroups
<Inherited from parent>
 READ PROPERTY
Allow NT AUTHORITY\SELF SPECIAL ACCESS for Private Information <Inherited from parent>
 WRITE PROPERTY
 READ PROPERTY
 CONTROL ACCESS
Allow Everyone Change Password
Allow NT AUTHORITY\SELF Change Password
Allow mydomain\Allow Reset Win Pwd Reset Password <Inherited from parent>
Permissions inherited to subobjects are:
Inherited to all subobjects
Allow mydomain\Enterprise Admins FULL CONTROL <Inherited from parent>
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS <Inherited
from parent>
 LIST CONTENTS
Allow BUILTIN\Administrators SPECIAL ACCESS <Inherited from parent>
 DELETE
 READ PERMISSONS
 WRITE PERMISSIONS
 CHANGE OWNERSHIP
 CREATE CHILD
 LIST CONTENTS
 WRITE SELF
 WRITE PROPERTY
 READ PROPERTY
 LIST OBJECT
 CONTROL ACCESS
Allow mydomain\Delegate-Join-Domain-Rights
 SPECIAL ACCESS for computer
<Inherited from parent>
 CREATE CHILD
Allow Everyone SPECIAL ACCESS for computer <Inherited from parent>
 CREATE CHILD
Allow NT AUTHORITY\SELF SPECIAL ACCESS for Private Information <Inherited from parent>
 WRITE PROPERTY
 READ PROPERTY
 CONTROL ACCESS
Inherited to group
Allow NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS
 SPECIAL ACCESS for tokenGroups
<Inherited from parent>
 READ PROPERTY
Inherited to computer
Allow NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS
 SPECIAL ACCESS for tokenGroups
<Inherited from parent>
 READ PROPERTY
Inherited to group
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS <Inherited
from parent>
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Inherited to inetOrgPerson
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS <Inherited
from parent>
 READ PERMISSONS
 LIST CONTENTS
 READ PROPERTY
 LIST OBJECT
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Remote Access Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for General Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Group Membership
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Logon Information
<Inherited from parent>
 READ PROPERTY
Allow BUILTIN\Pre-Windows 2000 Compatible Access
 SPECIAL ACCESS for Account Restrictions
<Inherited from parent>
 READ PROPERTY
The command completed successfully

I think this is a problem with the user object rather than the ou. Reasoning is that I can reset a password for a user in the same OU but not for another user in the same OU. Two users, same ou. I can reset one but not the other.
Effective Permissions shows I am granted permisiion to do so.
I believe the error was access denied when we tried to change the password via vbscript.
@seansobey - I applied the delegation at a ou higher in the tree. I forget how I had it apply down the tree but I confirmed that the acl is correct
and applied to the user
@Travis Vogel - It looks like the user with this problem is a part of Domain Users. I think the ACL is applied to the user because it shows in
the security window and effective permissions shows I have permission to reset the password. However, I see this other user is a part iof the builtin user group and the problematic user account is not. I may try adding the problematic user account
to that group and testing. It'll have to wait until tomorrow though.

How can you create a customized page to change user password?

Hello to all,
I would like to create a customized page for a user to change their password. We are using Portal version 3.0.9 on Windows NT/2000. Currently there is a page in portal where a user can change their password.
I tried linking to that page by copying the shortcut url and adding it as an html portlet. The problem is that we want to direct the users to a
page of our choosing when they click on the "cancel" and "ok" buttons. I read in the forums that there is a selfreg.cmd script.
I also read that there is some code that has been available.
Has anyone implemented a customized user password change page? Do you know of any links that might have steps to follow or
more informatioin?
Thanks in advance,
Lindsay

Hi,
I was able to customize the change password screen through a procedure. This is what I did:
* Created a procedure under the Portal30_sso schema:
CREATE OR REPLACE procedure reports_chage_password
site2pstoretoken in varchar2 default null
,p_username in varchar2 default null
,p_error_code in varchar2 default null
,p_submit_url in varchar2 default null
,p_done_url in varchar2 default null
,p_pwd_is_exp in varchar2 default null
,p_password in varchar2 default null
is
begin
htp.htmlopen;
htp.headopen;
htp.title ('<TITLE of Page>');
htp.headclose;
htp.bodyopen;
htp.p('<table width="100%"><tr><td colspan=2 align=center><IMG SRC=<directory of image if you want>"> <hr> </td></tr>');
htp.p('<tr><td colspan=2 align=center>');
htp.p('');
htp.header(nsize => 1 ,cheader => 'Change Password');
htp.p('');
htp.p('</td></tr><tr><td align=right>');
htp.formopen(curl => p_submit_url );
htp.p('');
htp.p ('Username:');
htp.p('</td><td alight=left>');
htp.p(p_username);
htp.p('');
htp.p('</td></tr>');
htp.formHidden(cname => 'p_username',cvalue => p_username);
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Old Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_old_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Confirm New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password_confirm',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.p('<tr><td rowsapn=2>');
htp.formHidden(cname => 'p_done_url',cvalue => '<the url that you want users to go to when they are done>');
htp.formHidden(cname => 'p_pwd_is_exp',cvalue => p_pwd_is_exp);
htp.formHidden(cname => 'p_password',cvalue => p_password);
htp.formHidden(cname => 'site2pstoretoken',cvalue => site2pstoretoken);
htp.p('</td></tr>');
htp.p('<tr><td align=right>');
htp.formSubmit(cname => 'p_action',cvalue => 'OK');
htp.p('</td><td align=left>');
htp.formSubmit(cname => 'p_action',cvalue => 'CANCEL');
htp.p('</td></tr></table>');
if p_error_code is not null then
htp.br;
htp.fontOpen(ccolor=> 'red', csize=> 4);
if p_error_code = 'auth_fail_err' then
htp.p('Old password is incorrect');
elsif p_error_code = 'pwd_rule_err' then
htp.p('The new password does not follow '||
'the password policies.');
htp.br;
htp.p('Verify with your System Administrator '||
'about the Password Policies');
elsif p_error_code = 'confirm_pwd_fail_txt' then
htp.p('Confirmation for new passord is not '||
'the same as the New Passowrd');
elsif p_error_code = 'null_new_pwd_err' then
htp.p('New password cannot be null');
elsif p_error_code = 'null_old_pwd_err' then
htp.p('Old password cannot be null');
else
htp.p ('Error: ' || p_error_code );
end if;
htp.fontClose;
end if;
end;
* Grant this procedure to PUBLIC
* Update the portal30_sso.wwsso_ls_configuration_info_$:
UPDATE portal30_sso.wwsso_ls_configuration_info_$
SET LOGIN URL = '<YOUR CUSTOM LOGIN URL OR THE WORD UNUSED IF YOU DON'T HAVE ONE> http://<MACHINE_NAME>.<DOMAIN>/pls/portal30_sso/portal30_sso.<NAME OF PROCEDURE>';
* After you update the table, go to your account information link, and click on the change password link.
* Then copy the url that you see in your address line
* And if you want a change password link at the top of your portal page, just go to EDIT on your page, then edit the banner defaults. Then in the links add the Lable and the URL. The URL would be the URL you copied from the previous step.
Hope this helps.
I've customized the login page too if you would like some sample code for that. Let me know.
Martin

Unable to change user password (OD-Master)

Hi!
Running a xserve with 10.9.5 as an OD-Master with more than 1000 users I realized that I cannot change their passwords anymore.
I'm using WorkgroupManager, and get the following message:
"In order to set the password of a a user with an Open Directory Password, your own password type must be Open Directory. Administrators with other password types cannot set the password of a user with an Open Directory password."
In the server.app I cannot change the password too without any error-message. The dialog is just not disappearing.
Any ideas?
Thank you,
Peter

Well I had exactly the same problem here with OS X 10.9.5 Mavericks Server and Security Update 2015-004 applied.
I tried several things (rekerberize my server, reset my Open Dir Admin password) but finally what worked for me:
I renewed my Certificate with Server.app > Certificates > double click on your certificate > a new window opens with the certificate > click "Renew..." > then "OK"
After that I could create a new user with a password with "Server.app" without trashing my whole OD-Master :-)
Also what could help: In "Workgroup Manager.app" > try to login with a local admin credential > then click on the right "Lock" icon > and authenticate
with the "OpenDir-Admin" credential so that you will see "Authenticated as myopendiradmin to directory; /LDAPv3/127.0.0.1
hope this helps
Gilles

Delay in the change user password OIM 11g

Hi guys,
I have a problem with OIM 11g. The user accesses the OIM to do change your password, when the message that password is changed show, the user executed log-off and try access with new password, but the new password isn't accepted.
The new password is posted to AD immediately.
Only after of some time, the new password is accepted in OIM.
I need the new password is applied as in AD. When changing the password.
Someone know resolve this issue??
Thanks

I don’t think this is possible. You can add some delay while changing target system password. But not guarantee.

Changing expired password with OCIPasswordChange

I know that ODP.NET has a option to open a connection with a new password when the old one has expired. I'm using System.Data.OracleClient from .Net instead of ODP because I'm using the Instant Client, which does not seem to work with ODP. Can somebody tell me how to call OCIPasswordChange?

Hi,
OCIPasswordChange is an OCI call. You'd have to write a complete OCI application in C to be able to use that, and OCI coding isnt for the faint of heart.
I do have a complete OCI sample that does it though.. here you go.
Cheers,
Greg
This sample demonstrates the use of OCIPasswordChange once the
password has expired, which requires setting the session into
the service context. Tested with oci 8.1.5, vc++ 6.0 sp3.
first create the user with expired password:
SQL> create user testuser identified by oldpass password expire;
SQL> grant create session to testuser;
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <oci.h>
static OCIEnv *p_env;
static OCIError *p_err;
static OCIServer *p_srv;
static OCISession *p_ses;
static OCISvcCtx *p_svc;
void main()
 int rc;
 char errbuf[100];
 int errcode;
 // Step 1: Initialize OCI
 rc = OCIInitialize((ub4) OCI_DEFAULT, (dvoid *)0,
 (dvoid * (*)(dvoid *, size_t)) 0,
 (dvoid * (*)(dvoid *, dvoid *, size_t))0,
 (void (*)(dvoid *, dvoid *)) 0 );
 // Step 2: Initialize the OCI evironment
 rc = OCIEnvInit( (OCIEnv **) &p_env, OCI_DEFAULT, (size_t) 0, (dvoid **) 0 );
 // Step 3: Initialize the OCI handles
 rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_err, OCI_HTYPE_ERROR,
 (size_t) 0, (dvoid **) 0);
 rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_svc, OCI_HTYPE_SVCCTX,
 (size_t) 0, (dvoid **) 0);
 rc = OCIHandleAlloc( (dvoid *) p_env, (dvoid **) &p_srv, OCI_HTYPE_SERVER,
 (size_t) 0, (dvoid **) 0);
 rc = OCIHandleAlloc((dvoid *) p_env, (dvoid **)&p_ses, (ub4) OCI_HTYPE_SESSION,
 (size_t) 0, (dvoid **) 0);
 // Step 4: Connect using a mutli-session connect
 rc = OCIServerAttach( p_srv, p_err,
 (text *)"local", 5, 0);
 // Create a server context
 rc = OCIAttrSet( (dvoid *) p_svc, OCI_HTYPE_SVCCTX,
 (dvoid *)p_srv, (ub4) 0,
 (ub4) OCI_ATTR_SERVER, (OCIError *) p_err);
 // Create a session context
 rc = OCIAttrSet((dvoid *) p_ses, (ub4) OCI_HTYPE_SESSION,
 (dvoid *) "testuser", (ub4) 8,
 (ub4) OCI_ATTR_USERNAME, p_err);
 rc = OCIAttrSet((dvoid *) p_ses, (ub4) OCI_HTYPE_SESSION,
 (dvoid *) "oldpass", (ub4) 7,
 (ub4) OCI_ATTR_PASSWORD, p_err);
 rc = OCIAttrSet((dvoid *) p_svc, (ub4) OCI_HTYPE_SVCCTX,
 (dvoid *) p_ses, (ub4) 0,
 (ub4) OCI_ATTR_SESSION, p_err);
 // Open the session on the server
 rc = OCISessionBegin ( p_svc, p_err, p_ses, OCI_CRED_RDBMS,
 (ub4) OCI_DEFAULT);
 // This is a generic error checking routine
 if (rc != 0)
 OCIErrorGet((dvoid *)p_err, (ub4) 1, (text *) NULL, &errcode,
 (text*)errbuf, (ub4) sizeof(errbuf), OCI_HTYPE_ERROR);
 printf("Error - %.*s\n", 512, errbuf);
 // If the error is a 28001, change the password.
 if(errcode==28001)
 // You need to set the Session into the service context
 // before you can call OCIPasswordChange(), and you also need
 // to allocate both the session and service context handles
 // before hand. Then you can call OCIPasswordChange.
 rc = OCIAttrSet((dvoid *)p_svc, OCI_HTYPE_SVCCTX,
 (dvoid *)p_ses,0,OCI_ATTR_SESSION, p_err);
 rc = OCIPasswordChange(p_svc, p_err, "testuser",8,
 "oldpass",7, "newpass",8, OCI_DEFAULT);
 if(rc != 0) printf("Password change failed.\n");
 else printf("Password successfully changed.\n");
 // Step 10: Disconnect from the server and free the
 rc = OCIServerDetach( p_srv, p_err, OCI_DEFAULT );
 rc = OCIHandleFree((dvoid *) p_srv, OCI_HTYPE_SERVER);
 rc = OCIHandleFree((dvoid *) p_svc, OCI_HTYPE_SVCCTX);
 rc = OCIHandleFree((dvoid *) p_err, OCI_HTYPE_ERROR);
 printf("Disconnected.\n\n");
 return;
}

Change user password with CUA

Similar Messages

Maybe you are looking for