headers
Andrew Niemantsverdriet | 5 Jun 2012 22:10
Favicon

Password Self Reset

I have finally gotten around to implementing the password self reset
stuff. What I am finding is it is not displaying the questions or
answers on the self service page. In my page layout I have a group
called password recovery and under that I have:
	Password self reset: Question 	
	Password self reset: Answer

However when I visit the self service page I don't see that group or
anything. I don't see any errors in the logs so I am at a loss as to
what needs to be done to troubleshoot this further.

Thanks,
--

-- 
 _
/-\ ndrew Niemantsverdriet
Linux System Administrator
Academic Computing
(406) 238-7360
Rocky Mountain College
1511 Poly Dr.
Billings MT, 59102

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
Permalink | Reply |
headers
Roland Gruber | 6 Jun 2012 20:19
Picon
Favicon
Gravatar

Re: Password Self Reset


Hi Andrew,

On 05.06.2012 22:10, Andrew Niemantsverdriet wrote:
> I have finally gotten around to implementing the password self
> reset stuff. What I am finding is it is not displaying the
> questions or answers on the self service page. In my page layout I
> have a group called password recovery and under that I have: 
> Password self reset: Question Password self reset: Answer
> 
> However when I visit the self service page I don't see that group
> or anything. I don't see any errors in the logs so I am at a loss
> as to what needs to be done to troubleshoot this further.

did you specify a list of security questions in the self service profile?
Your user must also have the object class "passwordSelfReset". This
can be added in LAM admin interface (user module "Password self reset"
must be activated in server profile).

--

-- 

Best regards

Roland

LDAP Account Manager
http://www.ldap-account-manager.org/

Want more? Get LDAP Account Manager Pro!
http://www.ldap-account-manager.org/lamcms/lamPro
(Continue reading)

Permalink | Reply |
headers
Andrew Niemantsverdriet | 6 Jun 2012 21:20
Favicon

Re: Password Self Reset

Hi.

On Wed, Jun 6, 2012 at 12:19 PM, Roland Gruber <post@...> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi Andrew,
>
> On 05.06.2012 22:10, Andrew Niemantsverdriet wrote:
>> I have finally gotten around to implementing the password self
>> reset stuff. What I am finding is it is not displaying the
>> questions or answers on the self service page. In my page layout I
>> have a group called password recovery and under that I have:
>> Password self reset: Question Password self reset: Answer
>>
>> However when I visit the self service page I don't see that group
>> or anything. I don't see any errors in the logs so I am at a loss
>> as to what needs to be done to troubleshoot this further.
>
> did you specify a list of security questions in the self service profile?
> Your user must also have the object class "passwordSelfReset". This
> can be added in LAM admin interface (user module "Password self reset"
> must be activated in server profile).
>
>
> - --
>
> Best regards
>
> Roland
(Continue reading)

Permalink | Reply |
headers
Roland Gruber | 7 Jun 2012 10:50
Picon
Favicon
Gravatar

Re: Password Self Reset

Hi Andrew,

On 06.06.2012 21:20, Andrew Niemantsverdriet wrote:
> Ok, I added the user module "Password self reset" and then tried to
> add the extention to an existing user and got the following error
> message:

you need to install the password self reset schema first:

http://www.ldap-account-manager.org/static/doc/manual/ch03.html#idp5544864

> Also is there a way to add this extension to all existing users or 
> for some way for them to enable it for themselves?

Unfortunately, there is no direct possibility to update all accounts
inside LAM. You can try to generate an export in tree view to get
the DNs of all accounts and then use this as basis to generate an
LDIF file to add the objectclass.

The self service does not add this object class because it uses the
user's account for all LDAP operations. Modifying the object classes
is nothing that you would allow a regular user.

--

-- 

Best regards

Roland Gruber

LDAP Account Manager
(Continue reading)

Permalink | Reply |

Gmane