How do you set up Password Servcies for a customer to do a self change (Legacy_Onyx KB Id: 241030)

Document ID : KB000055009
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

How is a self password change set up? The 6.0.4 docs have a seciton called "Enabling User-initiated Password Changes" but this only says how to do it with cgi or jsp based password services.

Solution:

USE CASE:
----------

The Following Outlines the Steps for Fcc Based User-initiated Password Changes:

  1. Components Required for constructing the URL:

    • Logon Server FQDN
    • FCC Based Pasword Services URI
    • SMAGENTNAME
    • TARGET (Note: The Target MUST be a PROTECTED Resource)


    URL:
    http://<myServer.domain.com>/siteminderagent/forms/smpwservices.fcc?SMAUTHREASON=34&SMAGENTNAME=<MyAgent>&TARGET=<http://myTarget.domain.com/protected>

  2. Construction of the LINK containing the URL to be added to a WebPage:

    1. <a href="http://myServer.domain.com
      /siteminderagent/forms/smpwservices.fcc?SMAUTHREASON=34&SMAGENTNAME=iis5&TARGET=http://myTarget.domain.com/protected">change
      password </a>
    2. Create an FCC Based Password Policy in the SM Admin UI.

  3. In SiteMinder Policy Server Admin UI protect the Realm /protected.

  4. Add the User(s) that have the rights to Change their password to the Policy that is associated with /protected.

  5. Server a Page containing the user initiated password services link.

  6. Click on the link and fill out the form for the User Initiated password change.

  7. If this password was successfully changed you will end up on a confirmation page with a link to the final target.

  8. Close out the browser and test to see if you can log directly in against the protected realm with your new password.

Also, refer to "How to Enable User-Initiated Password Changes with FCCs" section in Web agent configuration guide for more details.