rhettplace Absent Member.
Absent Member.
451 views

Identify User During Activation


I'm working with the SSPR activation process, trying to insert a form in
the Activate User Agreement Message.

http://tinyurl.com/na9tvgu

Basically, you specify some HTML and SSPR displays it during the
activation process. In my case, I want the user to agree to some terms
and enter their initials. I'm trying to write whatever they put in the
form back to the IDV when they agree and continue. I've got 75% of the
back end stuff worked out but I ran into a big road block because I
can't tell what user is being activated and so I can't pass any
identifying information (like a DN) to the LDAP process that writes to
the IDV.

The big question is, Is there any way to find out what user is being
activated within the "Activate User Agreement Message" context?

I've looked through the HTML and I see what looks like a unique
identifier that may be used to identify the user later in the process
called "pwmFormID". This value appears to be a random string that I'm
guessing might map back to the user later in the activation process. I
suspect there is a relationship in the database. If this is the case,
the only thing I can think of is to query the db using this ID and
pulling back a DN or other info I can use to build the DN.

Seems like this is way outside-the-box, but hey, that's my style. 🙂


--
rhettplace
------------------------------------------------------------------------
rhettplace's Profile: https://forums.netiq.com/member.php?userid=876
View this thread: https://forums.netiq.com/showthread.php?t=57463

0 Likes
3 Replies
Highlighted
Knowledge Partner
Knowledge Partner

Re: Identify User During Activation

rhettplace wrote:

>
> I'm working with the SSPR activation process, trying to insert a form
> in the Activate User Agreement Message.
>
> http://tinyurl.com/na9tvgu
>
> Basically, you specify some HTML and SSPR displays it during the
> activation process. In my case, I want the user to agree to some
> terms and enter their initials. I'm trying to write whatever they
> put in the form back to the IDV when they agree and continue. I've
> got 75% of the back end stuff worked out but I ran into a big road
> block because I can't tell what user is being activated and so I
> can't pass any identifying information (like a DN) to the LDAP
> process that writes to the IDV.
>


Can't you switch this around and have the processs prompt for the
user's initials as part of the identifying information?
(that would rely on the service knowing in advance the user's initials
at that point, which is not likely to be the case - but hey!)

> The big question is, Is there any way to find out what user is being
> activated within the "Activate User Agreement Message" context?
>
> I've looked through the HTML and I see what looks like a unique
> identifier that may be used to identify the user later in the process
> called "pwmFormID". This value appears to be a random string that I'm
> guessing might map back to the user later in the activation process.
> I suspect there is a relationship in the database. If this is the
> case, the only thing I can think of is to query the db using this ID
> and pulling back a DN or other info I can use to build the DN.
>


Maybe, think you will have to jump through a lot of hoops though.

Regardless, if you get it working - please report back, this seems like
a common enough requirement that others will end up needing it also.
Alex McHugh - Knowledge Partner - Stavanger, Norway
Who are the Knowledge Partners
If you appreciate my comments, please click the Like button.
If I have resolved your issue, please click the Accept as Solution button.
0 Likes
rhettplace Absent Member.
Absent Member.

Re: Identify User During Activation


The initials represent that the user has read and accepted the network
account policy. It has to be entered as part of a form that displays
the network account policy for legal reasons.


--
rhettplace
------------------------------------------------------------------------
rhettplace's Profile: https://forums.netiq.com/member.php?userid=876
View this thread: https://forums.netiq.com/showthread.php?t=57463

0 Likes
Micro Focus Contributor
Micro Focus Contributor

Re: Identify User During Activation

rhettplace;2451975 wrote:
The initials represent that the user has read and accepted the network
account policy. It has to be entered as part of a form that displays
the network account policy for legal reasons.


--
rhettplace
------------------------------------------------------------------------
rhettplace's Profile: https://forums.netiq.com/member.php?userid=876
View this thread: https://forums.netiq.com/showthread.php?t=57463


There is probably not a way to customize the agreement page to do what you want. You could use a post activation action to write a value to LDAP after the activation is complete. Otherwise please enter an enhancement request with your requirements for the agreement page.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.