Anonymous_User Absent Member.
Absent Member.
1287 views

Self Service Password Reset (SSPR)


Hello guys,

I wanted to know if it was possible to customize the main page screen of
the sspr and also if you can change the authentication method?..

Thank You


--
r_meghnagi
------------------------------------------------------------------------
r_meghnagi's Profile: https://forums.netiq.com/member.php?userid=4207
View this thread: https://forums.netiq.com/showthread.php?t=46696

0 Likes
8 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)

> I wanted to know if it was possible to customize the main page screen of

How specifically?

> the sspr and also if you can change the authentication method?..


To what, specifically?

Good luck.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)


I would like to make a login page very similar to this:
http://tinyurl.com/aetew62
and I want to know if this is possible...

I would also like to know if you can use a different authentication
method from Username and Password.. for example with a token code..

Thank you


--
r_meghnagi
------------------------------------------------------------------------
r_meghnagi's Profile: https://forums.netiq.com/member.php?userid=4207
View this thread: https://forums.netiq.com/showthread.php?t=46696

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)


can anyone help me? ...

Thanks


--
r_meghnagi
------------------------------------------------------------------------
r_meghnagi's Profile: https://forums.netiq.com/member.php?userid=4207
View this thread: https://forums.netiq.com/showthread.php?t=46696

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)

r meghnagi wrote:

> can anyone help me? ...


not sure if SSPR is opensource, too, but since it's basically a stripped-down
version of PWM, why not just use the original (support, of course...)? You can
do all you want with it and modify the UI just as you please. See
http://code.google.com/p/pwm/ for details.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)

Check out this thread in the NMAS forum on themes in SSPR; it may help you
get started with customizing the look/feel:

https://forums.netiq.com/showthread.php?t=46184

Good luck.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)


one last question .. is there a method different authentication by
username and password?

Thank all


--
r_meghnagi
------------------------------------------------------------------------
r_meghnagi's Profile: https://forums.netiq.com/member.php?userid=4207
View this thread: https://forums.netiq.com/showthread.php?t=46696

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)

This part, I admit I do not think it can do. You could probably request
this directly from the PWM developer (the parent project is hosted on
Google Code) and maybe provide business cases there. I could see it
making a lot of sense to handle multi-factor stuff that the backend
handles, though every install I've seen of this for password reset
capabilities did so via challenge/response exclusively. I can see that it
would be valuable to require the token as well but I do not think PWM (or
SSPR) supports this currently.

Good luck.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Self Service Password Reset (SSPR)

On 05.02.2013 00:14, ab wrote:
> This part, I admit I do not think it can do. You could probably request
> this directly from the PWM developer (the parent project is hosted on
> Google Code) and maybe provide business cases there. I could see it
> making a lot of sense to handle multi-factor stuff that the backend
> handles, though every install I've seen of this for password reset
> capabilities did so via challenge/response exclusively. I can see that it
> would be valuable to require the token as well but I do not think PWM (or
> SSPR) supports this currently.


If you are talking about initial authentication.

There are two sections in the PWM Documentation you should read
https://docs.google.com/document/d/1DtiDX2fbNco-f1fQKIVDsanOxX7WLS08mHOs10kKMow/edit?pli=1#heading=h.mmek96-b4rogg


1. Guide 😧 Integrating PWM with Novell Access Manager

It's very simple to stick Access Manager in front of PWM, so that Access
Manager authenticates the user (with the various authentication methods
available there). You are then only redirected to SSPR / PWM when your
password has actually expired.


2. Guide C: Integrating PWM with CAS

CAS is a centralised authentication service that out of the box, CAS
supports authenticating users via passwords validated against
LDAP (including Active Directory), databases, or RADIUS. CAS also
supports authenticating users without passwords, including via
SPNEGO/NTLM, X.509 certificates.

So if you want to use more than just username & password

Password recovery via SMS is available. So the code already is in place
to use SMS gateways, it could probably be extended to perform a username
/ password + SMS token type authentication.

I tend to agree with Aaron regarding forgotten password / password
recovery - you are better off with a challenge response type system that
is already offered by SSPR.

--
----------------------------------------------------------------------
Alex McHugh
NetIQ Knowledge Partner http://forums.netiq.com

Please post questions in the forums. No support is provided via email.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.