LDAP User Password changing...

Hi all,
We use windows AD LDAP server for central user administration..
I am trying to change the password of my own in the portal server..how can i do this ?
When i see the password change option in Useradmin/identity management under All data sources, i can see 1.LDAP
2.UME Database
Can i just choose LDAP and Click "Generate New Password " ?
I would like to know exact procedure to change the password..( no matter what the password policy is )
Please help..Appreciate your time and will be rewarded with points if helpful.
Thanks!
Addy

> There are standard UME configs that are set to read/write and readonly. The name of the config normally has it as part of the name - readonly or writeable.
Where can i check the UME config settings to LDAP ?
> If your LDAP product doesn't have a web based frontend,
I don't know if they have any..I know the LDAP server Hostname.How do i login to LDAP WebUI using a webpage ? ( eg : hostname: port/xxx )
How do you make sure the LDAP product's password rules are enforced?>
> Make it a problem for the LDAP administrator!
From Portal side, how do i check if the LDAP rules are being enforced or not ? If it is not, then i can raise a question to LDAP Admin. And i cannot send a request to change the password for me everytime i want right ?
Any good docs on Portal with LDAP ?
Thanks!
Addy

Similar Messages

User Password change fails in OWA 2013

User Password change fails in OWA with this error: Your password couldn't be changed. Make sure the old password you typed is correct and that the new password meets the minimum security requirements.
We are migrating from Exchange 2007 to Exchange 2013. Have mailboxes in both environments. OWA 2007 password changes succeed (user mailbox is still in Exchange 2007). When the user mailbox is moved to Exchange 2013, password changes fail
with the above error.
We have the Exch 2013 servers are on Windows 2012 and we are running Exch 2013 CU3. We have made changes to the Default Role Assignment Policy to prevent users from changing Contact information and setting user photos, etc. We are not exactly
sure when user password changes stopped working, or even if they ever did work, although we recently installed our Prod Exch 2013 servers alongside our 2007 servers without any RBAC delegation implemented and a quick test of a user password change was successful.
I reversed all the changes to the Default Role Assignment Policy but the password change still fails.

Hi,
Please try the following steps in your CAS server:
1. Click Start > Run and type regedit and click OK.
2. Navigate to the "HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA" key.
3. Set the ChangeExpiredPasswordEnabled value from 1 to 0.
4. Close regedit and re-open it.
5. Set the ChangeExpiredPasswordEnabled value from 0 to 1.
6. Close regedit.
7. After you configure this DWORD value, please reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.
Here is the similar thread about password change issue in Exchange 2013 CU3, please refer to:
http://social.technet.microsoft.com/Forums/en-US/30b74c81-9b98-46f4-9ca0-1c3bb74f4a3f/users-with-expired-passwords-or-change-password-at-next-logon-unable-to-change-password-via-owa-in?forum=exchangesvrclients
Hope it helps.
Thanks,
Winnie Liang
TechNet Community Support

Registration of user password change in Oracle Identity Manager 9.1.0.2

Where I can find record in Oracle Identity Manager 9.1.0.2, if a user password change.
There any log, report, etc ...?
thank you very much

Check this: Re: Audit when change password fails
-Bikash

How to monitor user password changes for users in a database.

hi All,
can someone please help me.
I need to audit the user password changes in a database. Ive check the auditing but audit " alter user " doesnt audit the changes in password and ive also checked the select * from sys.user_history$; view but didnt find anything useful. So is there a way to trace who changed the password and when ?
Thanks for the help.

You need something along the lines of http://www.morganslibrary.org/reference/ddl_trigger.html
or you need to disallow ALTER USER to everyone and write your own PL/SQL and instrument logging the changes.
Sybrand Bakker
Senior Oracle DBA

LDAP user password "force reset" compliance.

Sun JSWS 7.0
Sun JSDS 6.0
I have ACLs set up with an LDAP authentication database. When a user logs in and their password is in the warn before expire time frame they are redirected to the URL defined by "Redirect URL" in the "Edit Authentication DB" web server GUI menu. This is (from what I can tell) the proper behavior.
Here is the issue- when we create a new user we have an LDAP password policy which is supposed to force the user to change their password at first log in. However, the web server does not seem to comply with this policy and simply allows the user to log in. Is there a way to to configure the web server to send the user to the change password page in this case?
Thanks,
Jess

Theoretically I think it should work I will have to test it. Can you check LDAP Server logs and tell me what's happening?
Currently Sun Java System Web Server 7.0 redirects you to a URL provided when passwords
1) are about to expire (LDAP Server returns LDAP_CONTROL_PWEXPIRING ) or
2) have expired (LDAP Server sends LDAP_CONTROL_PWEXPIRED).
This page is set by administrators to either communicate to users that their password will expire soon (and possibly offer ways to renew it). The way to set this is in the auth-db configuration (see server.xml) may have an optional element <auth-expiring-url> its value must be a URL.
When LDAP server returns LDAP_CONTROL_PWEXPIRED control, user is not authenticated in Web Server (hence will be DENIED access to resources which have ACLs that allows access only to authenticated users).
However when LDAP server returns LDAP_CONTROL_PWEXPIRING, user is authenticated in Web Server (hence will be ALLOWED access to resources which have ACLs that allows access only to authenticated users).
According to the documentation LDAP server should return LDAP_CONTROL_PWEXPIRED in case the use is logging in the first time
http://www.mozilla.org/directory/csdk-docs/controls.htm#use_pwd_policy

Weblogic admin user password change w/o disrupting existing users

Hi Folks,
As a business policy we need to change the password of the admin user in weblogic after a cycle of specific period.
Please let us now how can we do that without losing the other existing users in 'my realm.'
I understand that we can use the weblogic.utils.security.AdminAcoount utility to give the new password, which will create a new DefaultAuthenticatorInit.ldift file in +<domain-home>/security+ folder (according to Doc ID 1082299.1).
The password will change but the users in 'my realm' will be lost. (there are many users and it is a production environment so recreation is out-of- question)
Is there a way we can retain the users and still proceed with the password change?
Cheers,
Jeegar

Hi Jeegar,
This can be doen by followin the standard procedure by login to console and navigate to :-
DOMAIN_STRUCTURE--->Security Realm--->myrealm--->Users and Groups---->User tab click on the user weblogic
--click on the password tab and put the new password there and save (password is changed for the user here)
---Logout from the console and login to the console again using the new password
But when the server starts it do not read the password for the user directly from the realm rather it picked the same from the $DOMAIN_HOME/servers/AdminServer/security/boot.properties
Now in order to make this change available when the server starts change the values for the username and password in boot.properties and specify them in plain-text and save the same.
Now next time whenever the server will start it will pick up the new values from the boot.properties and once the same had been accepted those will be encrypted again.
You might have to make the change for the boot.properties for all the Managed Server if you have the Managed Servers in the domain which will be located at the location $DOMAIN_HOME/servers/<<Managed Server Name>>/data/nodemanager/boot.properties
You can test the steps on some lower environment first and try the same in Critical environment once the testing goes successful.
Regards,
Vijay
Edited by: V Kumar on Oct 25, 2012 3:06 PM

Importing Security Through shared services caused admin user password chang

Hi,
I exported shared services from shared services url from one environment and imported into another environment. This changed the admin user password where I imported.
Details:-
I went to shared services of one environment say dev and to -> Applications Groups -> Foundation -> shared services and exported it. Took its export and imported into test environment.
Now what it did it changed the user password of the target with the source one. However I did remove the internal ID of all files in it.
Can anyone please help ? How to get the password of it back? I do not have back up of shared services of test environment.
Version 11.1.2.1
Thanks a lot in advance!!!!!!!!!!!!!!!!!!!!

I was hoping you had a strategy in place, it is basically restoring the shared services relational database from a backup, stop the epm related services first.
It may be even possible to correct your LCM file and set the admin to the way it should be but I am not sure what state the provisioning is in so couldnt guarantee it would work.
Cheers
John
http://john-goodwin.blogspot.com/

ACS Appliance - Local User Password Changing Options

I am configuring a pair of 1113 appliances running ACS 4.2. The client wants to only user local user accounts stored in the ACS database for AAA on devices and LMS and Ops Manager logins. There are configurable password aging settings for users and groups. The question that I have is how are the users notified that their passwords are expired and ow can they change them? The customer uses only ssh for device management. Is the UCP utility still a requirement if an appliance is used as opposed to a standard Windows ACS installation. I also came across this bug:
SCsj50218 Bug Details
Password expiry feature should be support for users local to ACS
Symptom:
ACS currently does not support password expiry / password management feature for locally configured users.
Conditions:
users are configured locally on ACS as opposed to an external database such as active directory.
Workaround:
user external database / server where user profiles are setup.

ACS supports Password Aging for Device-hosted Sessions-Users must be in the CiscoSecure user database, the AAA client must be running TACACS+, and the connection must use Telnet. You can control the ability of users to change passwords during a device-hosted Telnet session.
You can also control whether Cisco Secure ACS propagates passwords changed by this
feature.
UCP is used in both appliance and window.
Regards,
~JG
Do rate helpful posts

OIM Startup Error After weblogic user password change

Hello,
I'm running OIM 10g (BP15) on WLS server in clustered mode. Everything was running smoothly until -
I changed the weblogic password after going to
security realms >myrealm >Users and Groups >weblogic > Passwords:
I was able to login to WLS using new cred (weblogic/newpasswd). But OIM server startup started giving login errors as below.
I reverted back by change by setting the old password again... but the error continued....
Please suggest. I already tried putting the correct passwords in the boot.properties. But it didn't help.
Please note.. i'm successfully able to login to WLS console.. only OIM server startup is having below errors..
OIM_SERVER1.log is opened. All server side log events will be written to this file.>
<Jan 26, 2012 6:44:31 PM PST> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
ERROR,26 Jan 2012 18:44:53,194,[XELLERATE.ACCOUNTMANAGEMENT],Class/Method: Authenticate/connect User with ID: WEBLOGIC was not found in Xellerate.
ERROR,26 Jan 2012 18:44:53,202,[XELLERATE.ACCOUNTMANAGEMENT],Class/Method: XellerateLoginModuleImpl/login encounter some problems:
com.thortech.xl.security.tcLoginException:
at com.thortech.xl.security.tcLoginExceptionUtil.createException(tcLoginExceptionUtil.java:96)
at com.thortech.xl.security.tcLoginExceptionUtil.createException(tcLoginExceptionUtil.java:53)
at com.thortech.xl.security.Authenticate.connect(Authenticate.java:152)
at com.thortech.xl.security.Authenticate.connect(Authenticate.java:71)
at com.thortech.xl.security.wl.XellerateLoginModuleImpl.login(XellerateLoginModuleImpl.java:159)
at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
at com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:113)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy22.login(Unknown Source)
at weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.login(WLSJAASLoginServiceImpl.java:89)
at com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:82)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
at $Proxy40.authenticate(Unknown Source)
at weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:40)
at weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:348)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:929)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
<Jan 26, 2012 6:44:53 PM PST> <Critical> <Security> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
<Jan 26, 2012 6:44:53 PM PST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
Truncated. see log file for complete stacktrace
Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User weblogic javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User weblogic denied
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:261)
at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
Truncated. see log file for complete stacktrace
>
<Jan 26, 2012 6:44:53 PM PST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED>
<Jan 26, 2012 6:44:53 PM PST> <Error> <WebLogicServer> <BEA-000383> <A critical service failed. The server will shut itself down>
<Jan 26, 2012 6:44:53 PM PST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
Thanks,

Got the solution :
1. Log on to the WebLogic Server Administration Console.
2. Click the domain name for the Managed Server.
3. Click View Domain-wide security settings.
4. Click the Embedded LDAP tab.
5. Select the Refresh replica at startup option, and then click Apply.

Report Builder 2.0 User Password Change Issue

A user changed her password (domain account) this morning and can no longer open the query designer (we are using an SSAS data source) or run a report in Report Builder 2.0. She can still access the SSRS front end report manager reports with no issue (and she enters her new password).
When clicking Run for a report in the Report Builder 2.0 the following error message displays:
The request failed with HTTP status 401: Unauthorized.
When trying to open the Query Builder for a dataset in the Report Builder 2.0 the following error message displays:
An existing connection was forcibly closed by the remote host
Unable to read data from the transport connection: An existing connection was forcibly closed by the remote host.
A connection cannot be made. Ensure that the server is running.
The security log in the applicaiton event log on the report server logs the following with each failed attempt:
Unknown user name or bad password.
Three other users have recently reset their passwords and had no issue with Report Builder 2.0. I am thinking that her password may be cached or saved within Report Builder 2.0 and it keeps using her old password. I have had the user reboot and uninstall/reinstall Report Builder 2.0 but neither fixed the issue. It appears after uninstalling that all application data was not removed as recent reports show after reinstalling and I was not prompted for login credentials again. I had our domain admin reset her password back to what it was before she changed her password and all issues in Report Builder 2.0 went away and she could use the Query Builder and run the reports. I need to figure out how to let her change her password and have Report Builder 2.0 work though. Any help is greatly appreciated.

Sorry, going to Options > Settings and clicking "Clear all recent item lists" didn't work for me. My login credentials are still cached, and I'm not prompted to log in, when I launch Report Builder.
I'm running Win7 Professional, IE10. I cleared my browser cache as my first attempt to clear the login, but that didn't work. I even cleared again, making sure to select to clear stored passwords/logins, but that didn't clear it, either.
Best regards,
Brad

Startup disaster, Root/user password change, Please help!!

Hi, my ibook g4 was purchased on ebay through a seller with 100% feedback (a school district). It came with Tiger already installed, and I bought the Leopard Retail upgrade disc, installed all that, and did software updates to get it up and running at 10.5.8. It ran perfectly for the first two days.
Then on startup, the blue screen issue which lasted forever. I put in the Update install disc to run disc utility: A-ok. Tried again, and again. Nothing.
Finally, I went to the installer menu, and reset the user/root/admin passwords.
Now, even when I put the install disc in, it doesn't even go to the gray apple. Instead, it just gives that "?" /faces pictures intermittently.
I was wondering if anyone has had any such problem, and found a solution.
I should add that I already attempted "Safe" mode and even "Transfer" mode, with firewire/friend's macbook. All to no avail.
Is there any way to FIND that hard drive in there again?
Thanks, everyone!
Robert

HI,
Now, even when I put the install disc in, it doesn't even go to the gray apple. Instead, it just gives that "?" /faces pictures intermittently.
Indicates that your iBook can't find a System Folder to boot from.
Then on startup, the blue screen issue which lasted forever. I put in the Update install disc to run disc utility: A-ok. Tried again, and again. Nothing.
Did you actually boot from the install disc or just insert into the optical drive? In order to run Disk Utility from the install disc...
Insert your install disk and Restart, holding down the "C" key until grey Apple appears.
Go to Installer menu and launch Disk Utility.
Select your HDD (manufacturer ID) in the left panel.
Select First Aid in the Main panel.
*(Check S.M.A.R.T Status of HDD at the bottom of right panel. It should say: Verified)*
Click Repair Disk on the bottom right.
If DU reports disk does not need repairs quit DU and restart.
If DU reports errors Repair again and again until DU reports disk is repaired.
When you are finished with DU, from the Menu Bar, select Utilities/Startup Manager.
Select your start up disk and click Restart
While you have the Disk Utility window open, look at the bottom of the window. Where you see Capacity and Available. *Make sure there is always 10% to 15% free disk space*
Go here for help when a A flashing question mark appears when you start your Mac
Carolyn

Can not start OC4J_BI_FORM after PORTAL user password change

We changed PORTAL password by going top sqlplus and OAS. Thinking it will make changes at both places. Now we see that when we start OAS. OC4J_BI_FORM does not start???

Please refer to section 6.4 Changing OracleAS Metadata Repository Schema Passwords and Table 6-2 Methods for Changing Oracle Metadata Repository Schema Passwords in the Oracle® Application Server Administrator's Guide, located at http://www.oracle.com/technology/documentation/appserver.html (Click View Library under Oracle Application Server 10g Release 2 (10.1.2.0.2))
You should use the Application Server Control Console to change the password. After you change the password, restart Oracle HTTP Server and OC4J_Portal: In the home page for the instance, select HTTP_Server and OC4J_Portal and click Restart.
Regards,
Pete

How can you create a customized page to change user password?

Hello to all,
I would like to create a customized page for a user to change their password. We are using Portal version 3.0.9 on Windows NT/2000. Currently there is a page in portal where a user can change their password.
I tried linking to that page by copying the shortcut url and adding it as an html portlet. The problem is that we want to direct the users to a
page of our choosing when they click on the "cancel" and "ok" buttons. I read in the forums that there is a selfreg.cmd script.
I also read that there is some code that has been available.
Has anyone implemented a customized user password change page? Do you know of any links that might have steps to follow or
more informatioin?
Thanks in advance,
Lindsay

Hi,
I was able to customize the change password screen through a procedure. This is what I did:
* Created a procedure under the Portal30_sso schema:
CREATE OR REPLACE procedure reports_chage_password
site2pstoretoken in varchar2 default null
,p_username in varchar2 default null
,p_error_code in varchar2 default null
,p_submit_url in varchar2 default null
,p_done_url in varchar2 default null
,p_pwd_is_exp in varchar2 default null
,p_password in varchar2 default null
is
begin
htp.htmlopen;
htp.headopen;
htp.title ('<TITLE of Page>');
htp.headclose;
htp.bodyopen;
htp.p('<table width="100%"><tr><td colspan=2 align=center><IMG SRC=<directory of image if you want>"> <hr> </td></tr>');
htp.p('<tr><td colspan=2 align=center>');
htp.p('');
htp.header(nsize => 1 ,cheader => 'Change Password');
htp.p('');
htp.p('</td></tr><tr><td align=right>');
htp.formopen(curl => p_submit_url );
htp.p('');
htp.p ('Username:');
htp.p('</td><td alight=left>');
htp.p(p_username);
htp.p('');
htp.p('</td></tr>');
htp.formHidden(cname => 'p_username',cvalue => p_username);
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Old Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_old_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.br;
htp.p('<tr><td align=right>');
htp.p('');
htp.p ('Confirm New Password: ');
htp.p('');
htp.p('</td><td align=left>');
htp.p ( htf.formPassword(cname => 'p_new_password_confirm',csize => 30,cmaxlength => 30) );
htp.p('</td></tr>');
htp.p('<tr><td rowsapn=2>');
htp.formHidden(cname => 'p_done_url',cvalue => '<the url that you want users to go to when they are done>');
htp.formHidden(cname => 'p_pwd_is_exp',cvalue => p_pwd_is_exp);
htp.formHidden(cname => 'p_password',cvalue => p_password);
htp.formHidden(cname => 'site2pstoretoken',cvalue => site2pstoretoken);
htp.p('</td></tr>');
htp.p('<tr><td align=right>');
htp.formSubmit(cname => 'p_action',cvalue => 'OK');
htp.p('</td><td align=left>');
htp.formSubmit(cname => 'p_action',cvalue => 'CANCEL');
htp.p('</td></tr></table>');
if p_error_code is not null then
htp.br;
htp.fontOpen(ccolor=> 'red', csize=> 4);
if p_error_code = 'auth_fail_err' then
htp.p('Old password is incorrect');
elsif p_error_code = 'pwd_rule_err' then
htp.p('The new password does not follow '||
'the password policies.');
htp.br;
htp.p('Verify with your System Administrator '||
'about the Password Policies');
elsif p_error_code = 'confirm_pwd_fail_txt' then
htp.p('Confirmation for new passord is not '||
'the same as the New Passowrd');
elsif p_error_code = 'null_new_pwd_err' then
htp.p('New password cannot be null');
elsif p_error_code = 'null_old_pwd_err' then
htp.p('Old password cannot be null');
else
htp.p ('Error: ' || p_error_code );
end if;
htp.fontClose;
end if;
end;
* Grant this procedure to PUBLIC
* Update the portal30_sso.wwsso_ls_configuration_info_$:
UPDATE portal30_sso.wwsso_ls_configuration_info_$
SET LOGIN URL = '<YOUR CUSTOM LOGIN URL OR THE WORD UNUSED IF YOU DON'T HAVE ONE> http://<MACHINE_NAME>.<DOMAIN>/pls/portal30_sso/portal30_sso.<NAME OF PROCEDURE>';
* After you update the table, go to your account information link, and click on the change password link.
* Then copy the url that you see in your address line
* And if you want a change password link at the top of your portal page, just go to EDIT on your page, then edit the banner defaults. Then in the links add the Lable and the URL. The URL would be the URL you copied from the previous step.
Hope this helps.
I've customized the login page too if you would like some sample code for that. Let me know.
Martin

User Password Not Replicated during ACS Replication

I am provisioning user accounts in ACS through a provisioning system. The provisioned ACS is set to replicate user and group database to another ACS. Replication interval time is set to 15 mins.
Problem is that even though the replication cycle runs every 15 mins, if no user is added or deleted, the pre-checks determine that outbound replication is not required and cycle is completed. Hence, if user's password change, they are not replicated to other ACS and in case the authentication request goes to the other ACS then it fails. Manual replication is fine.
How to make sure replication is run even in case of user password change and not just when a user is added or removed.

Hi,
What is the acs ver ? Are the user accounts you are referring to stored? i.e. are the local to the ACS server itself, or are they defined in an external user database (e.g. Active Directory, LDAP, etc.)?
Users defined via Active Directory are dynamically mapped to a user account in ACS and this account information is typically not replicated since the users created are dynamic and can change properties based on
configuration/changes in Active Directory itself.
Regards,
Jagdeep

JAAS login module is calling password change page

Hi,
I am developing an login module on SAP Portal 7.0, but I stuck an issue. "User password change" page is appearing on the screen as soon as I call "http://<hostname>:<port>/irj/portal", after I add my custom login module under "ticket" component on "Visual Administrator". It is weird that custom login module is running properly on the portal with 1 server node. The problem is occured when I try to call it on the portal with 5 server nodes. I would like to indicate that I didn't call "User password change" page or something like a thing that can call that page, in the code. Anyone has a suggestion?
Thank you

I solved the problem

LDAP User Password changing...

Similar Messages

Maybe you are looking for