Getting the ROI on your self-service password reset solution

Similar Messages

• Is multi-factor auth required for self-service password reset and portal registration?

  Hi, hoping someone can give some clarity on this.  I'm dealing with strictly online accounts, no AD sync to local servers.  I have enabled and configured self-service password reset in AzureAD.  In that config I have required users to register
  their alt contact info when logging into the portal.  While testing this, I don't get prompted to register unless I've enabled multi-factor auth for the test user account.  I need users to register in case they need to use SSPR, but I don't want
  to force them into MFA.  I've gone over the following article and it says nothing about requiring MFA for SSPR or forced portal registration to work.
  https://msdn.microsoft.com/en-us/library/azure/dn683881.aspx
  I know there is a separate link for the registration portal that will guide users through the process, but that's a separate link.  Maybe they'll set it up, maybe they won't.  I'd like for the first sign-on to be a smooth process that gets them
  set up for SSPR if needed.  Can someone clarify and point me in the right direction? Thanks.

  Hey acook15,
  I work on the password reset engineering team.  Right now, you are correct, you cannot enforce registration for password reset during first sign in.  This is a feature that we are working on right now, which will be available very soon for sign
  ins to Azure, your connected apps, and the access panel, and will come a bit later for Office 365 sign ins, as well.
  In the interim, you can configure SSPR to require users to register when they access the access panel at myapps.microsoft.com by following the instructions here: http://aka.ms/customizesspr (search for "Require users to register when signing in to the
  access panel?").  
  You can also read more about other ways to get SSPR data in the system for your users here: http://aka.ms/ssprbestpractices.  Let me know if this helps, and if you need to get in contact with me, feel free to email me at [email protected] 
  Regards,
  Adam.
  Adam Steenwyk | Senior Program Manager | [email protected]

• SAP IdM - Self Service password reset

  Hi All
  Has anyone configured the Self-service password reset option yet?
  I have a question that the documentation doesn't answer. We plan on using the IdM on our SAP landscape which would involve at least 9 seperate systems, meaning the Dev, QA and Prod systems for BW 3.5, CRM 2007 & ECC.
  My question is if we have a user that has access to all these systems, but only needs to reset their password in 1 of them. How does the Self-service password reset option know which system that user's id is locked in or would it be resetting the password in every one of the systems?
  Ken

  That's right. Users would have to repeat the same process if they want to change the password for say 2 systems out of the 9. Its a quick and easy way to get it up and running without much customization.
  But if you want to eliminate this repetition, the ideal way would be to customize the UI (some thig like this which comes as part of RDS)
  Cheers,
  Murali.

• Self service password reset issue

  Hello Experts,
  An issue about self service password is being encountered. I am setting the new password over self service password reset page, but unfortunately it is not being triggered to the target systems(SAP and AD). In the job log, instead of running the pass 'changepasswordabapuser' or 'setadspassword', IDM is running pass 'update abap user' or 'update ads user'.
  But if I change password of a user via Administrator login(in change identity), the password is getting changed on all target systems. Kindly suggest!
  Version: IDM 7.2
  Thank you,
  Girish

  Hello Girish,
                    see if note
  1936431 - Self Service Password Change - Modify task is called rather than
  Set Password task
  can help in this case.
  Regards,
  Chris

• Self-service password reset - ADFS - AAD

  Hello,
  We have a full AD FS setup with dirsync to enable our office 365 users to logon.
  Is it possible with the new Azure AD Sync tool and the Azure AD premium licence for the end users to do a self service online password reset?
  If so, is it ease to upgrade the current Dirsync version to the latest release and what could go wrong?
  Can we have an azure AD premium trial account on our already free Azure AD (office 365)?
  Regards,
  Nis

  Hi Nisse Versi,
  Thanks for posting here!
  Here is a short
  Video to configure self-service password reset for users in Windows Azure AD.
  You might also want to check this link:
  https://msdn.microsoft.com/en-us/library/azure/dn683881.aspx
  Let us know if you need further assistance on this.
  Regards,
  Sadiqh

• How can we force a single user to re-register to Self service password reset?

  In my scenario, I trying to figure out how I can force a user to re-register if he forgets his answers for his pwd reset questions? I tried to force it by checking the re-register check box on Password reset set, but it enforces it on every user.
  Thanks

  If one were to do that using PowerShell it might look like this:
  001
  002
  003
  004
  005
  006
  007
  008
  009
  010
  011
  012
  013
  014
  015
  016
  017
  018
  019
  020
  021
  022
  023
  024
  025
  026
  027
  028
  029
  030
  031
  032
  033
  034
  035
  036
  037
  038
  039
  040
  041
  042
  043
  044
  045
  046
  047
  048
  049
  050
  051
  ### Get the User object
  $xPathFilter = "/Person[AccountName='HoofHearted']"
  $queryResult = Export-FIMConfig -OnlyBaseResources -CustomConfig $xPathFilter
  ### Display the object
  $queryResult | foreach{$_.resourcemanagementobject.ResourceManagementAttributes
  | ft -AutoSize}
  ### Get the object ID and the AuthNWFRegistered attributes
  $objectId = $queryResult.ResourceManagementObject.ResourceManagementAttributes
  | where{$_.AttributeName
  -eq 'ObjectID'}
  $AuthNWFRegistered = $queryResult.ResourceManagementObject.ResourceManagementAttributes
  | where{$_.AttributeName
  -eq 'AuthNWFRegistered'}
  ### Create a new ImportObject for the User
  $update = New-Object Microsoft.ResourceManagement.Automation.ObjectModel.ImportObject
  $update.ObjectType
  = "Person"
  $update.SourceObjectIdentifier
  = $objectId.Value
  $update.TargetObjectIdentifier
  = $objectId.Value
  $update.State
  = 1 ## Put
  ### AuthNWFRegistered is multivalued
  foreach($AuthNWFRegisteredValue in $AuthNWFRegistered.Values)
  ### Create an ImportChange for each value in AuthNWFRegistered
      $importChange = New-Object Microsoft.ResourceManagement.Automation.ObjectModel.ImportChange
      $importChange.Operation
  = 2 ## Delete
      $importChange.AttributeName
  = "AuthNWFRegistered"
      $importChange.AttributeValue
  = $AuthNWFRegisteredValue
      $importChange.FullyResolved
  = 2
      $importChange.Locale
  = "Invariant"
      $update.Changes
  += $importChange
  ### Finally, import the change to FIM
  Import-FIMConfig $update
  CraigMartin – Edgile, Inc. – http://identitytrench.com

• Attribute #MX_MSKEYVALUE_DN could not be found Self Service Password reset

  Hi,
  I use NetWeaver 7.02 and IDM 7.2
  I've just created the Self Service-Task Password Reset.
  If I call the page http://<host>:<port>/idm/pwdreset I get the following error message:
  Attribute #MX_MSKEYVALUE_DN could not be found
  DE: Attribut #MX_MSKEYVALUE_DN konnte nicht abgerufen werden
  The attribute MSKEYVALUE is available in my Identity Store.
  The Task for "Edit authentication questions" is available.

  Hi Chris,
  I use NetWeaver 7.00 SP14 and IDM 7.2 SPS 3 (tried IDM 7.1 before, but had same error) on Windows Server 2003 SP2 with an Oracle DB 10.2.0.1
  The IDM is working fine except the PwdReset Application. Maybe it has to do something with the Anonymous User?
  Executing SELECT * FROM MC_LANGUAGE_TRANSLATIONS WHERE LANGKEY = '#MX_MSKEYVALUE_DN'
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=AR
  LANGIDSTORE=1
  LANGVALUE=?????? ??????
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=BG
  LANGIDSTORE=1
  LANGVALUE=???????? ??
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=CA
  LANGIDSTORE=1
  LANGVALUE=Identificador unÌvoc
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=CS
  LANGIDSTORE=1
  LANGVALUE=JednoznacnÈ ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=DA
  LANGIDSTORE=1
  LANGVALUE=Entydig ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=DE
  LANGIDSTORE=1
  LANGVALUE=Eindeutige ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=EL
  LANGIDSTORE=1
  LANGVALUE=???ad??? ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=EN
  LANGIDSTORE=1
  LANGVALUE=Unique ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=ES
  LANGIDSTORE=1
  LANGVALUE=ID unÌvoco
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=FI
  LANGIDSTORE=1
  LANGVALUE=Yksiselitteinen tunnus
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=FR
  LANGIDSTORE=1
  LANGVALUE=ID unique
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=HE
  LANGIDSTORE=1
  LANGVALUE=????? ??????
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=HR
  LANGIDSTORE=1
  LANGVALUE=Jedinstveni ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=HU
  LANGIDSTORE=1
  LANGVALUE=EgyÈrtelmu ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=IT
  LANGIDSTORE=1
  LANGVALUE=ID univoco
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=JA
  LANGIDSTORE=1
  LANGVALUE=?? ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=KO
  LANGIDSTORE=1
  LANGVALUE=?? ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=MX
  LANGIDSTORE=1
  LANGVALUE=Unique ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=NL
  LANGIDSTORE=1
  LANGVALUE=Unique ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=NO
  LANGIDSTORE=1
  LANGVALUE=Entydig ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=PL
  LANGIDSTORE=1
  LANGVALUE=Jednoznaczny ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=PT
  LANGIDSTORE=1
  LANGVALUE=ID unÌvoco
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=RO
  LANGIDSTORE=1
  LANGVALUE=ID univoc
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=RU
  LANGIDSTORE=1
  LANGVALUE=??????????? ??.
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=SH
  LANGIDSTORE=1
  LANGVALUE=Jedinstveni ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=SK
  LANGIDSTORE=1
  LANGVALUE=JednoznacnÈ ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=SL
  LANGIDSTORE=1
  LANGVALUE=Enoznacen ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=SV
  LANGIDSTORE=1
  LANGVALUE=Entydig ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=TH
  LANGIDSTORE=1
  LANGVALUE=ID ?????????
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=TR
  LANGIDSTORE=1
  LANGVALUE=Benzersiz tanitici
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=UK
  LANGIDSTORE=1
  LANGVALUE=?????????? ?????????????
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=ZH_CN
  LANGIDSTORE=1
  LANGVALUE=????
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=ZH_HK
  LANGIDSTORE=1
  LANGVALUE=?? ID
  LANGKEY=#MX_MSKEYVALUE_DN
  LANGCODE=ZH_TW
  LANGIDSTORE=1
  LANGVALUE=?? ID
  Kind Regards,
  Tobias

• ITunes is updated and works fine and I am able to log onto my account. When I go to purchase a song, I get the error message "Your Apple ID has been disabled". I've tried different methods: changing passwords, making a new account with another email addre

  iTunes is updated and works fine and I am able to log onto my account. When I go to purchase a song, I get the error message "Your Apple ID has been disabled". I've tried different methods: changing passwords, making a new account with another email address, and emailing itunes tech support. I am curious as to how many others have been experiencing the same issue. When I googled the error, it seemed like it was happening extremely often with many people.
  We all love their products, but they always come with a lot of issues and horrible customer support.
  My apple Id is [email protected]

  My Iphone 4 is telling me the same thing and I believe I figured out what the problem is.  I had some fraudulent charges on my itunes account, so I call my bank and disputed the charges.  Right after I did that, I started getting the message "Your apple ID has been disabled."  I just realized today that the charges are not fraudulent, they are "in app purchases."  One of my daughters downloaded the game Top Girl which is FREE, but in the game Top Girl you use money in the game to purchase things.  It just so happens that the money you use to purchase things is real money MY Money!!!.  My daughter thought she was using play money in the game and had no idea she was using real money.  She spent $106.00 buying stuff.  Now I have to call the bank and tell them to release the hold and pay Itunes.  I'm hoping this solves the problem.  Here is the link to learn how to disable "in app purchase" on your iphone or ipad.
  http://www.ikidapps.com/2010/12/parents-avoid-accidental-app-purchases-how-to-tu rn-off-in-app-purchasing.html

• Getting the error message"your apple ID has been disabled" . I reset my ID password last night and am still having the same issue.

  getting the error message"your apple ID has been disabled" . I reset my ID password last night and am still having the same issue.

  If you are still unable to access your account after resetting your password, you will need to contact iTunes Store Customer Support via http://www.apple.com/support/itunes/contact/

• I need reset my security information, I offered my user name and password is correct bout I can't get the information from your website in my email. So that I can't buy new app pay my money.

  I need reset my security information, I offered my user name and password is correct bout I can't get the information from your website in my email. So that I can't buy new app pay my money.

  Hi,
  Which website your are using to update the Adobe Flash player? No Adobe website ever ask for any id and password to update the flash player.
  If you are using MAC machine and its the password prompt while installing update that you are talking about then please follow What userid & password do I need to install Flash Player?
  -Varun

• HT5622 my apple id is not working when i sign in from my laptop it works but when i sign in from my iphone4 then its not working it gives the message of "your aapleid or password is incorrect"? how can i solve this problem please help

  my apple id is not working when i sign in from my laptop it works but when i sign in from my iphone4 then its not working it gives the message of "your aapleid or password is incorrect"? how can i solve this problem please help

  Hey nocillado,
  Thanks for using Apple Support Communities.
  It sounds like you have 2 things you want to address. These articles can help you use iCloud with your existing Apple ID.
  Get help activating your iPhone
  http://support.apple.com/kb/ts3424
  Using your Apple ID for Apple services
  http://support.apple.com/kb/ht4895
  Using the same Apple ID for Store purchases and iCloud (recommended)
  Have a nice day,
  Mario

• Self Service Password Registration Page taking more time for loading in FIM 2010 R2

  Hi,
  I have beeen successfullly installed FIM 2010 R2 SSPR and it is working fine
  but my problem is that Self Service Password Registration Page taking more time for loading when i provide Window Credential,it is taking approximate 50 to 60 Seconds for loading a page in FIM 2010 R2
  very urgent requirement.
  Regards
  Anil Kumar

  Double check that the objectSid, accountname and domain is populated for the users in the FIM portal, and each user is connected to their AD counterparts
  Check here for more info:
  http://social.technet.microsoft.com/wiki/contents/articles/20213.troubleshooting-fim-sspr-error-3003-the-current-user-account-is-not-recognized-by-forefront-identity-manager-please-contact-your-help-desk-or-system-administrator.aspx

• Info About self service password provisioning

  Hi Guys ,
  Does any one got a chance to work on self service password provisioning in OIM 11gr2.??
  If yes ,Please share relevant docs related to same.

  Password expiry period = 90 days with warning of password expiration given to the user at least five (5) days but no more than ten (10) prior to expiry and at every logon during that time
  All Password Resets must be verified through a ‘closed loop’.  That is there must be verification to a service (e.g. eMail address or Phone Number) known only to the system and the user requesting the reset.  Changes should be notified to the User’s Administrator.
  Email should be sent to user on unsuccessful and successful password change .
  Your help would be highly appreciated .

• My iPad conveys that it is disabled, and that I need to connect to iTunes.  When I connect to iTunes I get a message that I need to enter my pass code and open my Ipad, but I don't get the screen to open with a password.  How do I fix this?

  My iPad conveys that it is disabled, and that I need to connect to iTunes.  When I connect to iTunes I get a message that I need to enter my pass code and open my Ipad, but I don't get the screen to open with a password.  How do I fix this?

  You will need to restore it. It may not sync, but the iPad's sidebar has to appear you can restore it and it will be as the last time ou synced it to iTunes. For more info:
  iTunes: Backing up, updating, and restoring your iPhone, iPad, or iPod touch software

• I've logged onto iTunes, but it's asking me security questions because it's a new device, and I'm getting the answers wrong, but iTunes wants to reset but send the new passwords to my ex partners email address how can I get round this.

  I've logged onto iTunes, but it's asking me security questions because it's a new device, and I'm getting the answers wrong, but iTunes wants to reset but send the new passwords to my ex partners email address how can I get round this.

  I believe part of the recovery process is you get an e-mail allowing you to reset questions.  If that e-mail isn't correct either because your son set it up then you really have no option but to ask Apple again.  They are getting strict abotu security and given the number of "My iTunes account got hacked" posts here I can guess why.  They have no way of knowing you really are the owner of the account.  It's like me going to a policeman and saying, "See that car over there?  That is mine, can you open the door for me?" and the police opening it on that basis alone.
  Frequently asked questions about Apple ID - http://support.apple.com/kb/HE37 --> Can I change the answers to the security questions for my Apple ID?  --> Yes. You can change the answers to the security questions provided when you originally signed up for your Apple ID. Go to My Apple ID (http://appleid.apple.com/) and click Manage your account.
  Forgotten security questions - https://discussions.apple.com/message/18402551  and https://discussions.apple.com/message/18625296
  More involved forgotten question issues - https://discussions.apple.com/thread/3961813
  Kappy 09/2012 post about security questions - https://discussions.apple.com/message/19569468
  John Galt's tips (09&11/2012) - https://discussions.apple.com/message/19809294 and https://discussions.apple.com/message/20229239
  If none of the above work, contact iTunes Support at http://www.apple.com/support/itunes/contact/ and follow the instructions to report the issue to the iTunes Store.