×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Unsupported content

 

This version of the product is in limited support. However, the documentation is available for your convenience. You will not be able to leave comments.
Remedy Single Sign-On 19.02 ... Getting started Key concepts

Password change mechanisms

This topic was edited by a BMC Contributor and has not been approved.  More information.

End user passwords are stored,  and can be changed on a related identity provider side. Identity providers do not have a mechanism to automatically notify Remedy Single Sign-On about the password change. Hence, an end user's Remedy SSO session remains active until it expires. To force the logoff, and receive the request for entering a new password, an end user needs to ask a Remedy SSO administrator to delete all active sessions/OAuth of this end user.

Related topics

Logon and logoff experience for end users

Invalidating and configuring end user sessions

Enabling AR authentication for bypassing other authentication methods

Password change mechanisms for AR identity provider 

Remedy SSO enables end users to change their Remedy Action Request System (Remedy AR) passwords directly in the Remedy SSO login page. This functionality is available only for Remedy AR authentication.

As a Remedy SSO administrator, you configure whether or not end users can change passwords. The Change Password link is available on the Remedy SSO login page, if you enable the Allow users to change passwords option for AR System authentication in Remedy SSO Admin Console.  For more information this option, see BMC Remedy AR System authentication process.

End user password change scenarios

The change password functionality supports the following scenarios:

ScenarioProcess to change the password

An end user tries to access an integrated BMC application (for example, BMC Digital Workplace) and is redirected to the Remedy SSO login page. The user wants to change the current password and hence clicks the Change Password link.

To voluntarily change the password:

  1. In the Remedy SSO login page, click the Change Password link.
  2. Enter your User Name.
  3. Enter your current Password.
  4. Enter the New Password.
  5. Click Change and Login.
    The password is changed and the user is logged into the integrated BMC application.
  6. Contact the Remedy SSO administrator to invalidate your old sessions (if any).

(Click the image to expand it.)

A user tries to access an application (for example, BMC Digital Workplace) and is redirected to the Remedy SSO login page. The user's password may have expired or the system forces the user to change the password.

To change the password when the system forces the user to change the password:

  1. In the Remedy SSO login page, enter your credentials.
  2. Click Log In.
    The following message is displayed: Password change is required.
  3. Enter the New Password.
  4. Click Change and Login.
    The password is changed and the user is logged into the integrated BMC application.
  5. Contact the Remedy SSO administrator to invalidate your old sessions (if any).

(Click the image to expand it.)

A user gets an email notification from Remedy AR stating that the user's password has expired or will expire in a few days. The email contains an application URL with the following as the suffix: /_rsso/server/change-password. When the user accesses the URL, a page is displayed where the user changes the password.

To change the password after clicking the link in the email:

  1. Click the link in the email. 
  2. Enter the User Name in the page that is displayed.
  3. Enter the current Password.
  4. Enter the New password.
  5. Click Change.
    The password is changed and you stay on the same page. You need to click the integrated application's URL to access the application.
  6. Contact the Remedy SSO administrator to invalidate your old sessions (if any).

(Click the image to expand it.)

Unsupported password change scenarios

The Change Password functionality is not supported in the following scenarios:

  • When an authentication chain is implemented, the change password functionality is not available. Even when the authentication chain consists of more than one Remedy AR as the authentication mechanism, the change password functionality is not available.
  • The change password functionality is not available on the reauthentication and bypassing login pages.
  • The Remedy SSO login page does not provide an option to reset your password.

Was this page helpful? Yes No Submitting... Thank you
Last modified by Olga Kutetska on Jan 27, 2020
concept task scenario contributor_unapproved

Comments

Log in or register to comment.

Logon and logoff experience for end users
Start page
© Copyright 1991 – 2019 BMC Software, Inc.
© Copyright 1991 – 2019 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.