Big news! The community will be moving to a new platform April 21. Read more.
Big news! The community will be moving to a new platform April 21. Read more.
Absent Member.
Absent Member.
1347 views

Password self-service

Hello,

I have a request from new management to enable password self service for our users. We are running OES2 SP3 (fully patched) and have had universal passwords enabled for well over a year without issue. Reading the documentation I believe our environment meets all of the prerequisites with our current UP policy. I've created the challenge set, enabled the policy from the forgotten password tab and forced user to configure the challenge question for the test context. Upon login at the workstation, as expected I am prompted to run through the challenge question wizard which completes normally. I then logged out of that workstation and attempted to use the new forgotten password policy and am greeted with the following from the Novell client:

Authenticate using Challenge Response and reset password? - To which I select yes

I am then presented with the following error from the Novell client:

Forgotten Password: Error
Unable to complete Forgotten Password recovery:
NMAS: invalid requested sequence

I've looked over the forums and the previous references to this all pertain to netware 6.x I've seen no references to this from OES2. Any hints on what to log from the OES box and or workstation to resolve this?

Thanks,

Never share a foxhole with anyone braver than yourself.
Labels (1)
0 Likes
4 Replies
Absent Member.
Absent Member.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I think you may have better luck posting this in the NMAS forum if no
response comes up here. In the meantime, or if you do, which Authorized
Login Sequences do you have installed in your tree (look under cn=Security)?

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/

iQIcBAEBAgAGBQJQbeR9AAoJEF+XTK08PnB5RPQP/AywmEvUGugZMHk9+ffHBVFK
acRTwFZ75g6NIR1d0H1QbeYTD0o+TaFPZQcQjCZvJInbjwquXL7mA7h/mcOWty2P
ErjL9o0BvoiV5zh4iWOFyiLRKsdpxZLw4gBCrpd9ECRUFQP/6br58dtkqDEmV8CC
yCGdPFjhrkgoalDGI46bHw5hf3HkHt1TUGIUg7OtZJQLmoHYYwDhQKp5OrAMAFsk
I5AX7dhm8bjoT7ZtqebbMwgj15gTUByTZsjx6rzWIqmtGV8JPlHVVuCP77cMCqfa
LOTMY5DkbqIPKFlWzcAKd4YUU5Xx9aL6tvws+MygLXs4Q4On7TqZ4z//g2CSv994
rm5oXucfd3/fud786J28ncRgLXuiqqMPC2hBvsNWavLjC6ILT82YSZTD8Bj6IGEt
mLXoWhFKlbzwP9RPDKD9ntdYJlS8tmSi2FJshOk7iMOeUMjIc1S8JUREnQRw/8Vy
KPgLFUlkkLxaajDABs28yX8oFcCyR+gvxaQjb+NGQdsiEuFM7Hng3vPwP3iuwZBr
8gunWRUqY7FgTyIUFJKU2n9XPAaOS2KaxcyIcx/A4aM3sx/2MaIjNDeIgZfOBU5j
nMQyMv/keNosbIiKOfee7oatNGLRfo1XU64G9CqC+lYlur/Bl4/CrTZdgW6A1H5B
51KRhM7nnFN5kCFbVD/V
=vn08
-----END PGP SIGNATURE-----
0 Likes
Absent Member.
Absent Member.

I must be blind, I'm not seeing a 'NMAS' forum, unless it's a child forum of something else... Anyway, under Security I do not see 'Authorized Login Sequences' however I do have 'Authorized Login Methods'. Are those one in the same, or is missing the 'authorized login sequences'?

Thanks,

Never share a foxhole with anyone braver than yourself.
0 Likes
Absent Member.
Absent Member.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

My bad... should have looked at my tree before sending.

Yes, authorized login methods is probably what you are after, and within
there is probably a Challenge/Response method with a couple of sequences
within (the configuration of the method is seldom a problem... having it
is usually the issue). Here's the DN from my tree:

dn: cn=Challenge Response,cn=Authorized Login Methods,cn=Security

The NMAS forum is probably listed under the NetIQ brand now along with
the other Identity/Security products. forums.netiq.com, etc. Sorry
about that too... I'm zero for two it would seem.

Good luck.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.19 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
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=9mYm
-----END PGP SIGNATURE-----
0 Likes
Absent Member.
Absent Member.

Thanks for the replies, even though I appear to be in the wrong forum. I've found the NMAS forums where you listed and will re-post over there.

I do however have the same objects listed in my tree as you do, so at least I'm that far ahead of the game.

Never share a foxhole with anyone braver than yourself.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.