Disable Change password on first time login in portal

Similar Messages

• Log in does not prompt enter new password for first time login

  hi experts,
  I have created a new client and conducted a client copy for its data. Upon creation of new user for that client, I've provided the initial password. When the user tried to log in, it did not prompt him with the "Enter new password:". Also when trying to change password in the log in screen, it says. "You can no longer change password". How can I fix this one? im using ecc6.
  Thank you!

  HI,
  Check what kind of user you are creating first i.e dialog (or) service.
  second check if you are having permissions to change the password (or) not.
  For service user it will not prompt and for dialog it will prompt automatically.
  With Regards,
  Prashanth

• OS-X name and password prevents first-time login - Mac experience on hold

  My iMac is now one day old. After entering some personal details, it then asked me to login. The only user available to select was "Other". It then asked me for "Name" and "Password". No combination works.
  More detail: during the setup process I entered my first and second names plus a password. I wasn't asked for a single username. The OS-X login screen correctly displays that this is "My iMac" but every combination of name and password fails to work. I can't go back past selecting user "Other" and I can't login.
  Please help! This is our first Mac and after hours of looking at this impenetrable screen it must rank as our worst ever computer experience.
  (reluctantly written on a PC)
  Thank you.
  Message was edited by: fell-at-first-hurdle

  Priyatam,
  I don't know which operating system has the upper hand in security since I've never owned anything with Windows and I am unable to compare.
  An OS X keychain, however, functions as a password manager; it holds several keys (passwords) and will work behind the scenes to allow you access to different places once it is unlocked. Your Login keychain is one of several keychains that can be found in Keychain Access which is a Utility, as Kenichi explained, that can be found as follows: Applications>Utilities>Keychain Access. Your Login keychain password is set by default to the same password as your user account so that it unlocks automatically when you log in and allows you uninterrupted access to Mail and Safari, among other services. You can change this behaviour, if you prefer, to help protect your identity. I will not attempt to walk you through this, but simply advise you to open Keychain Access, click on Help, and then use the search field to find answers to your questions. You might also want to create a new user account to practice creating and manipulating passwords until you have a better understanding of keychains. This way, you won't risk getting locked out of your own account. They had me confused for the longest time and led to a lot of frustration.
  Good Luck,
  Mitch

• Restrict users from changing password on first login?

  Hi,
  I am doing mass user upload into UME using script import. How should I use the below functionality to restrict the users from changing password on first login?
  IUserAccount uacc =UMFactory.getUserAccountFactory().newUserAccount(uid,newUser.getUniqueID());
  uacc.setPassword("saras");
  uacc.setPasswordChangeRequired(false);
  How to implement above functionality with mass upload from script import?
  Thanks
  Srinivas
  Edited by: srinivas M on Jan 20, 2009 9:05 PM

  hi srinivas,
  try this api
  http://help.sap.com/javadocs/NW04S/current/se/com/sap/security/api/IUserAccount.html#isPasswordChangeRequired()
  https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/40d562b7-1405-2a10-dfa3-b03148a9bd19
  this document able to retrive the password.. same positon u can disable the field
  https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/10649c90-24af-2b10-1086-ea0667ec3655
  thanks

• TMG 2010 publishing Exchange 2010 OWA cannot change password if user must change password at first logon is set

  Hi,
   I have an odd issue whereby if I set "user must change password" on an AD account, the end user cannot logon, they're simply taken back to the OWA login page as if their password is incorrect.
  My setup is as follows:
  outer TMG -- uses a listener for email.contoso.com and is configured for no authentication.This uses a publishing rule to publish the inner TMG server. This server is not a domain member.
  inner TMG - uses a listener for email.contoso.com and is configured for NLTM\kerberos negotiation with forms authentication (Windows Active Directory). This server is a domain member and use a publishing rule to publish the internal CAS. Allow users to change
  password is selected in the publishing rules.
  Exchange 2010 SP1 - uses integrated windows and basic authentication. Has the appropriate registry key configured to allow users to change their AD password on first logon.
  I've registered an snp for "http/email.contoso.com mailserver-dc1", all SSL certificates being used are valid and my configuration used to allow users to login and change their password with "user must change password on first login"
  set in AD.
  If I launch a web browser on an internal server and point it to email.contoso.com I'm immediately presented with a generic Windows authentication request (similar to what's seen in ADFS) rather than the standard OWA page. No matter what I do, I cannot login
  and change my password using the correct URL. However if I point my browser at
  http://192.168.4.10/owa I'm prompted to login and I can change my password using the sam credentials.
  The only recent changes made are:
  - Disabling SSL 3.0 and enabling TLS  (http://www.isaserver.org/articles-tutorials/configuration-security/improving-ssl-security-forefront-threat-management-gateway-tmg-2010-published-web-sites.html)
  - Replacing the TMG listener certificates so that they now use SHA2 rather than SHA2 (certificates are trusted on each TMG server)
  Looking on the outer TMG and the DC logs I can see schannel errors which I believe are related to the problem. TMG monitoring also shows "Failed connection attempt: 1907 The user'spassword must be changed before logging on for the first time"
  I've checked that my inner TMG and DC are using the same certificate for server authentication and gone through this guide:
  http://blogs.technet.com/b/keithab/archive/2012/02/29/setting-up-and-troubleshooting-ldaps-authentication-in-forefront-tmg-2010.aspx
  If I try to use ldp.exe on the inner TMG, I get the error in the pic below
  Thanks
  IT Support/Everything

  Hi,
  You could try to analyze the TMG tracing and try the troubleshoot steps in the blog below.
  TMG 2010 – FBA, troubleshooting the change password feature 
  http://blogs.technet.com/b/isablog/archive/2012/05/07/tmg-2010-fba-troubleshooting-the-change-password-feature.aspx
  Best Regards,
  Joyce

• OIM11g - disable set password on first logon + force challenge questions

  Hi all,
  I was initially trying to work out how to stop forcing users to set their passwords on first login. Initially by using the Force Password Change at First Login flag.
  I found the following in metalink:
  BUG:10256559: DOCUMENT THAT XL.FORCEPASSWORDCHANGEATFIRSTLOGIN NO LONGER USED IN 11G
  The system property "Force Password Change at First Login" is not used in Oracle Identity Manager 11g Release 1 (11.1.1). Setting this property has no effect.
  I have also tried setting all of the flags on a user relating to this manually, but that hasn't worked either e.g.
  usr_change_pwd_at_next_logon
  usr_pwd_must_change
  I saw the following workaround in metalink:
  How To : How to Disable Change Password At Next Logon in OIM 11g
  Go to EM and change the ssoEnabled flag as per below instructions
  1. Go to WebLogic Domain -> <Domain Name>
  2. Right click and open 'System MBean Browser'
  3. In the 'System MBean Browser' left panel, go to 'oracle.iam' -> Server:<server name> --> Application:oim --> XML Config --> Config --> XMLConfig.SSOConfig --> SSOConfig
  4. Set the SsoEnabled flag to 'true' and apply
  Which works, however it also prevents challenge questions being forced on a user, which we want.
  Does anyone know how to do this?
  Thanks!

  yes, system property doesn't work in this case. you can try the simple test case
  1. create a new user
  2. login to oim db and update usr set usr_change_pwd_at_next_logon=0 for newely created user. (default value is 1)
  3.commit the change in db
  4. close the browser or clear cache. sometime it pick the value from cache. better close the the browser and open it
  5. login with the new user it won't ask for the password change but it will force to set question.

• Unable to change password while first logon on windows server 2008 R2 SP1 system

  Hi Team,
  Ad team has created new account for me with change password on first logon setting
  When I logged in on Windows Server 2008 r2 SP1 system with my new credentials I get a error message stating that
  "You must change your password before logging on the first time. For assistance, conatct your system administrator or technical support" 
  Concern:
  I do not get password change screen on first logon on the server. How should I change my password on first logon?

  Hi,
  I got resolution for above issue
  Run ==> type "tsconfig.msc" ==> double click "RDP-TCP" ==> change security layer to
  RDP Security layer ==> Apply ==> OK

• Change Password on first use does not work properly.

  I have created apex application user in Oracle Apex 3.2 as follows
  BEGIN
  APEX_UTIL.CREATE_USER(
  p_user_name => 'NEWUSER1',
  p_web_password => 'secret99');
  END;
  As in the documentation
  p_change_password_on_first_use  IN      VARCHAR2    DEFAULT 'Y',
  User should be prompted to change password at first use. But it does not work properly. There is no such message. Still accepts user to log in with old passord that was first given to the user. I have tried explicitly to ensure change password at first log in. by
  BEGIN
  APEX_UTIL.CREATE_USER(
  p_user_name => 'NEWUSER1',
  p_web_password => 'secret99',
  p_change_password_on_first_use =>'Y');
  END;
  Still does not work. How can I ensure user to change password on first login.
  Hasan Al Mamun
  Programmer
  Bangladesh Bank
  Dhaka, Bangladesh

  Might be a long way around the problem but I would utilize a boolean flag in a column (FIRST_LOGIN) your custom auth table set to 'Y' when you create their account. Then on the login page have a page process something like:
  ** NOT TESTED **
  declare
  v_first VARCHAR2(10;
  v_session NUMBER;
  begin
  v_session := APEX_CUSTOM_AUTH.GET_NEXT_SESSION_ID;
  select FIRST_LOGIN into v_first from AUTH_TABLE where user_name = :P101_USERNAME and :P101_PASSWORD;
  if v_first = 'Y' then
  wwv_flow_custom_auth_std.login(
  P_UNAME => :P101_USERNAME,
  P_PASSWORD => :P101_PASSWORD,
  P_SESSION_ID => v_session,
  P_FLOW_PAGE => :APP_ID||':2' *** THIS IS YOUR PAGE TO HAVE THEM RESET THEIR PASSWORD ***
  else
  wwv_flow_custom_auth_std.login(
  P_UNAME => :P101_USERNAME,
  P_PASSWORD => :P101_PASSWORD,
  P_SESSION_ID => v_session,
  P_FLOW_PAGE => :APP_ID||':1' *** MAIN LOGIN PAGE *****
  EXCEPTION WHEN OTHERS THEN
  *** handled **
  end;
  The page 2 in this example would have an few items for them to enter their new password twice, a page process to update their password in the auth table and then redirect them to the intended first page.
  Not sure if it meets your setup.
  Ricker

• Wwv_flow_fnd_user_api.edit_fnd_user to set change password on first use

  Hi,
  Oracle Database 11g Release 11.2.0.1.0 on Windows 2008 R2 x64
  Application Express 4.1.0.00.32
  I am importing a workspace from our dev system to 100 databases and I want to make sure the developers are not forced to change password on first loging otherwise this is going to waste a lot of time
  I am running
  alter session set current_schema = APEX_040100;
  begin
       wwv_flow_security.g_security_group_id := 10;
       wwv_flow_security.g_user := 'ADMIN';
       wwv_flow_security.g_import_in_progress := true;
       for r in (select *
                 from apex_040100.wwv_flow_fnd_user
            where security_group_id <> 10) loop
            wwv_flow_fnd_user_api.edit_fnd_user(p_user_id => r.user_id,
                                          p_user_name => r.user_name,
                                          p_change_password_on_first_use => 'N',
                                          p_first_password_use_occurred => 'Y');
       end loop;
       commit;
       wwv_flow_security.g_import_in_progress := false;
  end;
  However, this doesn't seem to do anything and doesn't return an error either. When I query the apex_040100.wwv_flow_fnd_user table nothing has changed
  I've searched the APEX documentation (http://docs.oracle.com/cd/E23903_01/welcome.html) for wwv_flow_fnd_user_api and there is only one match that just lists the package name, not even the spec
  thanks in advance
  Robert

  Ok now I had a bit more time to look at your code.
  I would do it like this:
  declare
    t_secgrp_id     apex_040100.apex_applications.workspace_id%type;
    t_existing_appl apex_040100.apex_applications.application_id%type := <YOUR APP number HERE>;
  begin
    select workspace_id
    into   t_secgrp_id
    from   apex_applications
    where  application_id = t_existing_app; 
    wwv_flow_security.g_security_group_id := t_secgrp_id;
    wwv_flow_security.g_user := 'ADMIN';
    wwv_flow_security.g_import_in_progress := true;
    for r in (select *
              from apex_040100.wwv_flow_fnd_user
              where security_group_id t_secgrp_id)
    loop
      wwv_flow_fnd_user_api.edit_fnd_user(p_user_id                      => r.user_id,
                                          p_user_name                    => r.user_name,
                                          p_change_password_on_first_use => 'N',
                                          p_first_password_use_occurred  => 'Y');
    end loop;
    commit;
    wwv_flow_security.g_import_in_progress := false;
  end;especially finding out the secgrp..
  Regards,
  Richard
  blog: http://blog.warp11.nl
  twitter: @rhjmartens
  If this question is answered, please mark the thread as closed and assign points where earned..

• How to disable change password at next logon field

  Hello,
  I want to disable change password at next logon field,so could anyone tell me how to do that & what is
  the column name in USR table for change password at next logon field.
  Thank-You
  Rahul Shah

  For 9.x
  Open FormMetaData.xml and comment the below lines
  <Attribute name="-31" label="createuser.label.changePwdAtNextLogon" displayComponentType="CheckBox" variantType="String" dataLength="1" map="Users.Change Password At Next Logon" />
  <AttributeReference editable="true" optional="true">-31</AttributeReference>
  Now open design console go to Administration->>System Configuration and search for keyword XL.ForcePasswordChangeAtFirstLogin. Set this value to FALSE.
  Dont forget to restart the server.

• User change password after first logging in Oracle 11g

  Hi
  Can you help someone in connection with this problem:
  user can not change password after first logging in Oracle 11g
  All the best
  Ragip Avdijaj

  Sounds like they are not getting logged in at all, so they are never getting to the point where they can change the password, but we need to see more detail to give a better answer (an example or copy-paste of a sqlplus session might help)

• DAC 10.1.3.4.1 First Time Login Repository Upgrade Failure

  Hi all,
  We are upgrading from DAC shipped with Siebel Analytics Applications 7.8.4 to DAC 10.1.3.4.1, platform and repository. This is combined with OBIEE upgrade from Analytics 7.8.5.2 to OBIEE 11g (11.1.1.5.0) and OBIA upgrade from Analytics Applications 7.8.4 to OBIA 7.9.6.3. Additionally, the database was upgraded from Oracle 10.2.0.2 to 11.2.0.2.
  We've just installed DAC 10.1.3.4.1 on a Windows 2008 (32bit) Server and this completed without issue. When logging in to the DAC Client and making a connection to the existing DAC Repository, after 'Yes' when prompted to upgrade the existing repository, we get a message saying, ["Upgrade didn't complete! Please check log file "log/upgrade.txt" for details."] Upon checking the log file, it states the following:
  ###start of message###
  =======================================
  Upgrade from DAC 1.0 to Dactopus format
  =======================================
  reading upgrade stage...
  nothing found - starting upgrade
  No upgrade from DAC 1.0 to Dactopus is currently available.
  If you want to have a Dactopus repository at the current connection,
  you should first drop existing one using 7.8.2.4 DAC build.
  upgrade failed
  ###end of message###
  Please, can someone shed some light on the situation?
  Many thanks.
  PS. We were able to create a new Oracle user, create a new DAC Repository on this new schema and import the OBIA 7.9.6.3 DAC Repository without apparent issue.

  Hello all,
  I have a conclusion to this question.
  Whilst Oracle Support did not explain the error message per se, they did state that one cannot upgrade a DAC 7.8.4 Repository via the First Time Login prompt, but rather to use the Upgrade/Merge Wizard, option 'Repository Upgrade (DAC 784)'. if the customisations are substantial. If the customisations are simple, they can be done manually - see upgrade guides.
  Whilst this is indeed stated in the upgrade documentation, I had been confused by other statements in the documents which appeared to be contradictory and ultimately lead me down the wrong upgrade path.
  Just do add, the documentation recommends using the Upgrade/Merge Wizard 'Repository Upgrade (DAC 784)' option if the customisations are substantial and unknown. If the customisations are simple and known, they can be done manually - see upgrade guides.
  Thanks.

• Mashe I cant sign in blackberry ID from my phone helpim trying to but it in option blackberry. ID. Its telling me wrong password. I changed password. 10 times and its still telling wrong password. I tryd to put my friend account it working please help

  Mashe I cant sign in blackberry ID from my phone helpim trying to but it in option blackberry. ID. Its telling me wrong password. I changed password. 10 times and its still telling wrong password. I tryd to put my friend account it working please help

  Check your password agian. If your friends password /account is working then it is your account information. Maybe you have the wrong username/email combo
  Developer for easyDial for BlackBerry Bold & inLink for BlackBerry PlayBook
  Find me online via twitter, or on the techfruits.com webpage. Please hit the like button below if what I said helped!

• Change Password Screen error in - External Facing Portal

  HI,
  We have developed an external facing portal for anonymous users and the EFP has protected content which will redirect the users to enter logon information to access it.
  The process of authentication also working well in EFP but we are getting some strange error when the password was "reset' by administrator.
  Here is the process...
  1. Password 'reset" by administrator
  2. user clicks on "protected content"
  3. Logon screen displayed
  4. After entering details, should be redirected to change their password but instead of that we are getting "Java iView Runtime error"
  I need expert views on this to solve.
  This is happening only when accessing EFP, user will be redirecting successfully to change password screen when accessing through "/irj/portal"
  Any solution.
  Thanks
  MMK

  Here is the scenario ..
  1. User's password was reset by administrator.
  **That's fine.
  2. User gets redirected to change their password when logging (first time after reset) ... when accessing via .. http://<server>:<port>/irj/portal
  **That's ok too, this is just a redirection.  At this point I would be doing https for external customers though.
  3. Occured "Java Ivew run time error" when the user trying to login from External Facing Portal ... via .. http://<server>:<port>/irj/portal/anonymous?guest_user=partners
  **At this point you will have to look at your .trc log files. (logviewer)   If this is just an access denied issue then look at permissions in the roles or groups.  If you are assigning a new password, is that effecting a group or system membership?  The .trc files will give a heads up.

• Password policy "change password at first login" errors!

  Complete panic!
  I've updated to OS X Server 4.1 and all my users appear to be ok. All green lights within the server app. Computers are NOT giving the red light 'network accounts unavailable'. However, no one can login. Every user, new and old, are being prompted at login to create a new password (say: Password 1). They type in a new password (say: Password2), the box shakes like it didn't accept it. However, if they try to login again, it won't accept Password1. If they type Password2, they again get prompted to change the password.
  So it looks like it's accepting the password, but stuck in this reset password loop.
  I've checked in the server app and workgroup manager. Neither have 'reset password at first login' selected.

  Many Open Directory problems can be resolved by taking the following steps. Test after each one, and back up all data before making any changes.
  1. The OD master must have a static IP address on the local network, not a dynamic address. It must not be connected to the same network with more than one interface; e.g., Ethernet and Wi-Fi.
  2. You must have a working DNS service, and the server's hostname must match its fully-qualified domain name. To confirm, select the server by name in the sidebar of the Server application window, then select the Overview tab. Click the Edit button on the Host Name line. On the Accessing your Server sheet, Domain Name should be selected. Change the Host Name, if necessary. The server must have at least a three-level name (e.g. "server.yourdomain.com"), and the name must not be in the ".local" top-level domain, which is reserved for Bonjour.
  3. The primary DNS server used by the server must be itself, unless you're using another server for internal DNS. The only DNS server set on the clients should be the internal one, which they should get from DHCP if applicable.
  4. If you have accounts with network home directories, make sure the URL's are correct in the user settings. A return status of 45 from the authorizationhost daemon in the log may mean that the URL for mounting the home directory was not updated after a change in the hostname. If the server and clients are all running OS X 10.10 or later, directories should be shared with SMB rather than AFP.
  5. Follow these instructions to rebuild the Kerberos configuration on the server.
  6. If you use authenticated binding, check the validity of the master's certificate. The common name must match the hostname and domain name. Deselecting and then reselecting the certificate in Server.app has been reported to have an effect in some cases. Otherwise delete all certificates and create new ones.
  7. Unbind and then rebind the clients in the Users & Groups preference pane. Use the fully-qualified domain name of the master.
  8. Reboot the master and the clients.
  9. Don't log in to the server with a network user's account.
  10. Disable any internal firewalls in use, including third-party "security" software.
  11. If you've created any replica servers, delete them.
  12. If OD has only recently stopped working when it was working before, you may be able to restore it from the automatic backup in /var/db/backups, or from a Time Machine snapshot of that backup.
  13. Reset the password policy database:
  sudo pwpolicy -clearaccountpolicies
  14. As a last resort, export all OD users. In the Open Directory pane of Server, delete the OD server. Then recreate it and import the users. Ensure that the UID's are in the 1001+ range.
  If you get this far without solving the problem, then you'll need to examine the logs in the Open Directory section of the log list in the Server app, and also the system log on the clients.