Patherton Absent Member.
Absent Member.
506 views

How do I exempt admin ids from the Force Response Setup

I want to force users to setup their challenge/response questions the first time they log in. However I don't want the admin id to have to do that.

How do I filter out my admin id.
0 Likes
2 Replies
Knowledge Partner
Knowledge Partner

Re: How do I exempt admin ids from the Force Response Setup

The admin user has to be outside of the ldap scope.
Another issue is that you probably have admin id's inside the scope and they will have to set this up. What I do is go through the wizard and answer really long and random answers to the questions.
Knowledge Partner
Knowledge Partner

Re: How do I exempt admin ids from the Force Response Setup

You can also modify the Challenge policy's LDAP filter to exclude things,
or if you are using NMAS-backed challenge response I think if you have the
admin applied to a policy without challenge/response configured then that
should work too.

As an example filter to exclude the user with cn=admin:


(&(objectClass=inetOrgPerson)(!(cn=admin)))



--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below...
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.