Our vBulletin migration is complete.
Welcome vBulletin users! All content and user information from the Micro Focus Forums (vBulletin) site has been migrated to this site. READ MORE.

Disable the PKI Auth that requires a user to change password QCCR1B141966

Disable the PKI Auth that requires a user to change password QCCR1B141966

I did find a way to set the password for the individual users, and they can change them themselves, even when PKI is enabled. This might be an acceptable workaround for individual users using the API, but for things that are automated from system to system, like UCMDB, we really need a service account.

It requires:

  1. disable PKI
  2. restart NA
  3. change password for a user such an API user
  4. re-enable PKI
  5. restart NA

While all this is going on every other user will be denied access

Not a good solution for a security hardened production enviroment.


Customer symptom

Disable the property that a user must change password at next logon.


Disable PKI auth, change the password, logout, login with the system account, change the password when prompted, logout, login with admin account, edit system account to set password to never expire, and then re-enable PKI Auth

1 Comment
Micro Focus Frequent Contributor
Micro Focus Frequent Contributor
Status changed to: Waiting for Votes
The idea has received an initial review to ensure adherence to our idea submission and community guidelines. More information may be needed at this stage, and we expect the community to help prioritize the idea with comments and community support (votes/kudos).
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.