none
Password Reset for newly provisioned users RRS feed

  • Question

  • Currently we have a custom application that allows newly provisioned user to look up their username with a couple of attributes like BirthDate, Firstname, Lastname, Last 4 of Social and then reset their password.

    We are using FIM to provision new user accounts in AD and would like to use FIM to allow the new users to reset their passwords. Can we use the FIM Password Reset functionality in the portal for users to look up themselves and reset their own password for the first time. Subsequently when they log into their machines they would be prompted for the security questions and would be prompted for the same.

    Please let me know if this is possible.

    Thanks and Regards,

    Sylvester

    Monday, May 13, 2013 10:26 PM

Answers

  • Hi Sylvester,

    Out of the box the answer would be no - but in theory almost anything is possible with custom development.  

    Out of the box the password reset functionality wouldn't work how you describe your current system as to be able to reset your password using the FIM Password Self Service you need to 1. know your username and 2. already have registered for password reset - which to do you need to know your username and password.  In theory it is possible to register a user for password reset automatically however they still need to know their username.

    It really depends on your objectives as you could keep using your existing process if that works how you want it to, or there are limitless possibilities if you are wanting to undertake custom development to adapt FIM to your processes. For instance it is possible to programatically register a person for password reset - that doesnt help with getting their username however.

    If you are wanting to keep customisations to a minimum you could for instance email a new employees username and password to their manager - which will allow them to login in for the first time and then allow them to register for FIM password self service.

    There are plenty of options it just really depends what outcome you are after and what appetite your organisation has for doing customisations to FIM.

    Andrew.

    • Marked as answer by Creados Tuesday, May 14, 2013 11:55 PM
    Tuesday, May 14, 2013 3:37 AM

All replies

  • Hi Sylvester,

    Out of the box the answer would be no - but in theory almost anything is possible with custom development.  

    Out of the box the password reset functionality wouldn't work how you describe your current system as to be able to reset your password using the FIM Password Self Service you need to 1. know your username and 2. already have registered for password reset - which to do you need to know your username and password.  In theory it is possible to register a user for password reset automatically however they still need to know their username.

    It really depends on your objectives as you could keep using your existing process if that works how you want it to, or there are limitless possibilities if you are wanting to undertake custom development to adapt FIM to your processes. For instance it is possible to programatically register a person for password reset - that doesnt help with getting their username however.

    If you are wanting to keep customisations to a minimum you could for instance email a new employees username and password to their manager - which will allow them to login in for the first time and then allow them to register for FIM password self service.

    There are plenty of options it just really depends what outcome you are after and what appetite your organisation has for doing customisations to FIM.

    Andrew.

    • Marked as answer by Creados Tuesday, May 14, 2013 11:55 PM
    Tuesday, May 14, 2013 3:37 AM
  • Is it possible to have the security questions pre-populated (because they would have answered these questions in the source system) in FIM? They would get their ID from their managers and then use the answers to the security questions to reset their password.
    Tuesday, May 14, 2013 11:55 PM