none
An error occurred when trying to reset your password...

    Question

  • Hi guys,

    I'm having some trouble trying to use users selfservice password reset with FIM2010.

    I logon with the user created in FIM, I register for the password reset (answering to the required questions), I than try to reset password, I answer to the displayed questions, I enter the new password and finally this error message is shown:

    "An error occurred when trying to reset your password, please contact the helpdesk for assistance."

    Can you help me with this? Any clue on what might be wrong?

    Thanks a lot.

    Edgar
    Wednesday, February 03, 2010 11:15 AM

Answers

  • what are the accounts for FIMService + FIMSynchronization.


    also, the setup doc tells u to
    "Deny access to this computer from the network" of service a/c on the server.
    Since FIMService + FIMSynchronization are on that same box, u can't have that settings. If u have done so, please revert


    also
    I assume u have followed the steps on Introduction on Password Reset around DCOM/WMI settings?


    The FIM Password Reset Blog http://blogs.technet.com/aho/
    • Marked as answer by EdgarOliveira Friday, February 05, 2010 11:17 AM
    Thursday, February 04, 2010 2:33 PM
  • Nice, I've finally acomplished it!

    I followed the steps on Introduction on Password Reset around DCOM/WMI settings because I was having an error on Event Log relating to that.

    I was also confused and thought that the groups like FIMSyncPasswordSet were AD groups, when they are actually local groups... I added the FIMService account to the corresponding groups and all fucntions well now.

    Thanks a lot for your help AnthonyHo.
    • Marked as answer by EdgarOliveira Friday, February 05, 2010 11:17 AM
    Friday, February 05, 2010 11:17 AM

All replies

  • check event log on FIMService
    there is a log called Forefront Identity Manager
    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Wednesday, February 03, 2010 2:19 PM
  • The log shows this error... 
     
    System.Management: System.Management.ManagementException: Access denied at System.Management.ManagementException.ThrowWithExtendedInfo(ManagementStatus errorCode) at System.Management.ManagementObjectCollection.ManagementObjectEnumerator.MoveNext() at Microsoft.ResourceManagement.PasswordReset.ResetPassword.ResetPasswordHelper(String domainName, String userName, String newPasswordText)

    seems like a problem of permissions...

    Wednesday, February 03, 2010 2:42 PM
  • FIMService service a/c needs to be in FIMSyncPasswordSet group (default it's a local group on the sync box)
    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Wednesday, February 03, 2010 2:59 PM
  • The FIMService is already member of FIMSyncPasswordSet in AD, still it does not work, it shows the same error message... I restarted FIM Sync and then FIM Service but still without success.
    Wednesday, February 03, 2010 4:32 PM
  • anything special on the eventlog of the Sync box?
    should have a few Bail events?
    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Wednesday, February 03, 2010 6:20 PM
  • Do you mean in the Event Log in Event Viewer? It only shows the message I previously posted.
    Thursday, February 04, 2010 10:51 AM
  • on the machine where you install FIMSynchronizationService

    btw, what's your topology like?
    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Thursday, February 04, 2010 11:46 AM
  • I have 4 virtual machines:

    1. Windows Server 2008 with FIM Portal and FIM Sync, SQL
    2. Windows Server 2008 with Exchange 2007
    3. Windows Server 2003 - Domain Controller
    4. Windows XP - FIM Client
    Thursday, February 04, 2010 11:59 AM
  • anything special in EventLog --> Application on machine #1??

    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Thursday, February 04, 2010 12:18 PM
  • Only the error message:

    System.Management: System.Management.ManagementException: Access denied at System.Management.ManagementException.ThrowWithExtendedInfo(ManagementStatus errorCode) at System.Management.ManagementObjectCollection.ManagementObjectEnumerator.MoveNext() at Microsoft.ResourceManagement.PasswordReset.ResetPassword.ResetPasswordHelper(String domainName, String userName, String newPasswordText)

    And after that it starts showing many error messages like this (every 30 seconds):

    Microsoft.ResourceManagement.Service: System.InvalidOperationException: Operation is not valid due to the current state of the object. at Microsoft.ResourceManagement.WebServices.Mail.Exchange.MailChannel.ExchangeMailChannelListener`1.ExchangeMailListener.<OnPollTimerExpired>b__0(Boolean findUnreadItems) at Microsoft.ResourceManagement.WebServices.Mail.Exchange.MailChannel.ExchangeMailChannelListener`1.ExchangeMailListener.OnPollTimerExpired(Object state)
    Thursday, February 04, 2010 12:35 PM
  • stop both services
    net start FIMSynchronizationService
    net start FIMService

    try again

    btw, you are looking at "EventLog-->Forefront Identity Manager", just wonder if there is anything under the "Application"
    The FIM Password Reset Blog http://blogs.technet.com/aho/
    Thursday, February 04, 2010 12:57 PM
  • Done, but still the same.

    Under Application at the Event Log there are no Errors or Warnings...
    Thursday, February 04, 2010 1:14 PM
  • what are the accounts for FIMService + FIMSynchronization.


    also, the setup doc tells u to
    "Deny access to this computer from the network" of service a/c on the server.
    Since FIMService + FIMSynchronization are on that same box, u can't have that settings. If u have done so, please revert


    also
    I assume u have followed the steps on Introduction on Password Reset around DCOM/WMI settings?


    The FIM Password Reset Blog http://blogs.technet.com/aho/
    • Marked as answer by EdgarOliveira Friday, February 05, 2010 11:17 AM
    Thursday, February 04, 2010 2:33 PM
  • Nice, I've finally acomplished it!

    I followed the steps on Introduction on Password Reset around DCOM/WMI settings because I was having an error on Event Log relating to that.

    I was also confused and thought that the groups like FIMSyncPasswordSet were AD groups, when they are actually local groups... I added the FIMService account to the corresponding groups and all fucntions well now.

    Thanks a lot for your help AnthonyHo.
    • Marked as answer by EdgarOliveira Friday, February 05, 2010 11:17 AM
    Friday, February 05, 2010 11:17 AM
  •  

    Thanks alot AnthonyHo for telling us restarting the services of FIM.

    I was getting the same error as mentioned in the post, but after restarting the services it started working on perfectly fine.

    Thank you very much 


    Network Engineer
    Tuesday, August 03, 2010 9:54 AM