×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
FootPrints 20.19 Administering

Configuring password reset

You can configure security settings for users’ requests to reset their passwords, create templates for password reset requests, and enable or disable these settings as needed. You can only connect to a single domain (unlike LDAP authentication). Internal FootPrints and Active Directory password reset are configured on the same page.

Users' responses to security questions are validated by the system but that validation is not case sensitive.

Users who have registered their IDs for password reset are listed at the bottom of the Password Reset Configuration page.

The following topics are provided:

Password Reset process

  1. A user registers for password reset. This includes providing login credentials, an email address, and answers to security questions.
  2. When ready to reset the password, the user submits a password reset request.
  3. An email is sent to the user with a link to the Reset Password form.
  4. The user clicks the link to open the Password Reset page, enters a new password, and submits the request.
  5. The system validates the responses in the request and proceeds accordingly.

Prerequisite

If you want to use specific templates for managing password reset events, the Quick Ticket templates must be configured so you can select them. You can select different templates for password reset success and failure, and for account unlock success and failure.

To configure password reset management

  1. Click the Administration tab.
  2. In the System Management section, click System Settings > Password Reset.
  3. To enable internal FootPrints password reset:
    1. In the FootPrints Application Password Reset Configuration section, select Enabled.
      This allows your users to see the option in their Welcome menu. The URL field is read-only and identifies the URL that could be provided to users so they can register for or request password reset without logging into the application or anonymous portal. No further configuration is required in this section.
    2. Proceed to step 5.
  4. To enable Active Directory password reset:
    1. In the Active Directory Password Reset Configuration section, select Enabled.
      This allows your users to see the option in their Welcome menu.
    2. In the AD Server field, enter the server name.
    3. In the AD Port field, enter the port number.
    4. In the Search Base field, enter the Active Directory Search Base Distinguished name.
    5. In the Administrator Distinguished Name field, enter the user ID for the system.
    6. In the Administrator Password field, enter the password for the system.
      The URL field is read-only and identifies the URL that you can provide to users so they can register for or request password reset without logging into the application or anonymous portal.
    7. In the Certificate File field, click Browse to upload the certificate for this system.
    8. (Optional) To display information about your password policy on the Password Reset page, in the Password policy field, type or paste the text.
    9. Proceed to step 5.
  5. In the Security Questions section:
    1. To add a security question:
      1. Click Add.
        You must add at least three security questions for which your users must enter responses. Users' responses are saved by the system for future reference.
      2. In the Question field, enter the question text.
      3. To add two additional questions, repeat steps i and ii.
    2. To edit a question, click in the Question field and modify the contents.
    3. To delete a question, click the red X next to the question.
  6. (Optional) In the Incident creation options section:
    1. In the Item to create for Password Reset/Account Unlock Incidents field, select the item to use when creating records generated by reset requests.
    2. In the Successful and Unsuccessful fields, select the Quick Ticket templates that should be used when creating incidents to track the account lock and password reset events.
      For more information about creating Quick Ticket templates, see Creating and managing Quick Templates.
  7. (Optional) In the Registered Users section, review the list of users who have registered their security answers, their failed reset attempts and date and time of the last failed reset attempt.
  8. Click Save to implement your changes.

Related topic

Viewing login attempts

Was this page helpful? Yes No Submitting... Thank you
Last modified by Winner kumar Jaiswal on Aug 30, 2019
active_directory password_reset concept task

Comments

Log in or register to comment.

Configuring system-wide settings
Configuring the server settings
© Copyright 2013 - 2019 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.