none
Programmatically register users for password reset workflow without QA gate? RRS feed

  • Question

  • Hi,

    We are interested in programmatically registering users for password reset workflows, as explained in http://technet.microsoft.com/en-us/library/jj134294%28v=ws.10%29.aspx. We have deployed it with the QA Gate thus far and its working. But we want to modify this.

    Please could someone clarify whether the following scenario is possible, as we have been working through it in the lab and its not working:

    • When the user is exported to the FIM Portal, programmatically register the user for password reset workflow (but without the QA Gate?)
    • When the user needs a pwd reset, they connect to the Pwd Reset Portal, they type in their username, FIM then emails them the OTP to another external email address, they type in the OTP back into the Pwd Reset Portal, and they reset their password

    So is this process possible without the QA Gate, as the example provided only works with the QA Gate configured...so the user gets asked the Questions on a pwd reset (see below)...

    C:\PS> Add-PSSnapin FIMAutomation C:\PS> $template = Get-AuthenticationWorkflowRegistrationTemplate –AuthenticationWorkflowName “Password Reset AuthN Workflow” $usertemplate = $template.Clone() $userTemplate.GateRegistrationTemplates[0].Data[0].Value="answer1" $userTemplate.GateRegistrationTemplates[0].Data[1].Value="answer2" $userTemplate.GateRegistrationTemplates[0].Data[2].Value="answer3" Register-AuthenticationWorkflow -UserName "domain\user1" -AuthenticationWorkflowRegistrationTemplate $userTemplate


    • Edited by D Wind Thursday, March 14, 2013 5:06 AM
    Thursday, March 14, 2013 4:07 AM

Answers

All replies

  • Have you modfied Password Reset workflow to not include Q&A gate?

    Tomek Onyszko, memberOf Predica FIM Team (http://www.predica.pl), IdAM knowledge provider @ http://blog.predica.pl

    Thursday, March 14, 2013 5:21 AM
  • Hi Tomasz,

    You correct, got it working like this:

    1. Removed the QA Gate

    2. Modified the script as follows:

    Add-PSSnapin FIMAutomation
    $template = Get-AuthenticationWorkflowRegistrationTemplate –AuthenticationWorkflowName “Password Reset AuthN Workflow”
    $usertemplate = $template.Clone()
    Register-AuthenticationWorkflow -UserName "domain\user1" -AuthenticationWorkflowRegistrationTemplate $userTemplate

    Thank you !

    Thursday, March 14, 2013 5:53 AM