none
Change FIM SSPR Q&A to FIM SSPR OTP SMS/Email RRS feed

  • Question

  • Hi,

    We currently have FIM SSPR deployed using the Question & Answer format.

    We would like to change this to the FIM SSPR OTP SMS or Email method.

    What is involved in this?

    Should we simply uninstall the SSPR Q&A Portals and clean up the SSPR Workflows?

    and then redeploy FIM SSPR, configure all users to auto-register for SSPR, integrate FIM SSPR with a SMS gateway (or an external email address) for the OTP delivery?

    Thanks,

    SK


    • Edited by Shim Kwan Friday, November 6, 2015 2:30 AM
    Friday, November 6, 2015 2:30 AM

Answers

  • edit password reset authN workflow: remove Q&A  gate and add SMS or e-Mail OTP gate instead.

    Gleb.

    • Marked as answer by Shim Kwan Tuesday, November 10, 2015 2:34 AM
    Friday, November 6, 2015 8:04 AM
  • sounds easy enough.

    so what happens with all the existing SSPR question/answer details - do they get purged from the FIM database?

    also, I assume some level of integration (code) will be required to integrate with a SMS Gateway?

    thanks

    The Gate Registration objects would not get purged - you'd have to clean that up manually.

    With FIM you'd need to write an SMS provider, or with MIM 2016 you can use Azure MFA as the SMS provider.


    Thanks,
    Brian

    Consulting | Blog | AD Book

    • Marked as answer by Shim Kwan Tuesday, November 10, 2015 2:34 AM
    Friday, November 6, 2015 7:37 PM
    Moderator

All replies

  • edit password reset authN workflow: remove Q&A  gate and add SMS or e-Mail OTP gate instead.

    Gleb.

    • Marked as answer by Shim Kwan Tuesday, November 10, 2015 2:34 AM
    Friday, November 6, 2015 8:04 AM
  • sounds easy enough.

    so what happens with all the existing SSPR question/answer details - do they get purged from the FIM database?

    also, I assume some level of integration (code) will be required to integrate with a SMS Gateway?

    thanks

    Friday, November 6, 2015 7:01 PM
  • sounds easy enough.

    so what happens with all the existing SSPR question/answer details - do they get purged from the FIM database?

    also, I assume some level of integration (code) will be required to integrate with a SMS Gateway?

    thanks

    The Gate Registration objects would not get purged - you'd have to clean that up manually.

    With FIM you'd need to write an SMS provider, or with MIM 2016 you can use Azure MFA as the SMS provider.


    Thanks,
    Brian

    Consulting | Blog | AD Book

    • Marked as answer by Shim Kwan Tuesday, November 10, 2015 2:34 AM
    Friday, November 6, 2015 7:37 PM
    Moderator
  • thank you
    Tuesday, November 10, 2015 2:34 AM