-
aniru2dh started the topic User Self Registration in the forum Access Management 3 years, 11 months ago
Hi Team,
I am currently running AM 5.5 and DS 5.5. I have enabled user self service registration. I am trying to invoke the rest end points to perform this operation. I was able to submit the request for registration and get the token and code on the users email. When I try to submit the code and token to complete the registration it gives me an…[Read more]
-
aniru2dh replied to the topic Email content Customization in the forum Access Management 3 years, 11 months ago
@acorysmart421-com Thanks for the information. We can customize the body of the email in the user self service settings. Is it possible to include the password attribute directly there something like %userpassword% so that it would send the password.
Thanks,
Anirudh. -
aniru2dh started the topic Email content Customization in the forum Access Management 3 years, 11 months ago
Hi Team,
We have currently setup OpenAM 5.5 and OpenDJ 5.5 as the Data Store. We would like to use the forgot password and reset functions available within OpenAM. We have a requirement to send the user password over mail once the user is created in OpenDJ.We also need to send the password during forgot password. It would be a one time password…[Read more]
-
aniru2dh replied to the topic Create a unique identifier for user during creation of user in OpenAM Rest API's in the forum Access Management 4 years ago
@Andy: Thanks for the information.
-
aniru2dh replied to the topic Create a unique identifier for user during creation of user in OpenAM Rest API's in the forum Access Management 4 years ago
@acorysmart421-com Thanks for the reply. Is it possible to generate the id dynamically in Directory Server when the rest API call is triggered without sending it as part of the payload. As per our requirement we don’t want to send the id and password in the payload but these attributes should be auto generated when the rest api call is triggered.…[Read more]
-
aniru2dh started the topic Create a unique identifier for user during creation of user in OpenAM Rest API's in the forum Access Management 4 years ago
Hi Team,
We are currently using Access Management 5.5 We have a requirement to create an alias unique identifier and password for user during creation. The users will be created using rest API call to AM 5.5 and the backend data store is Directory Server 5.5. The Rest API call will be triggered by a different Interface.
When the call is made…[Read more]
-
aniru2dh started the topic Rest API To create User without using plain plain password in the forum Access Management 4 years ago
Hi All,
We have a requirement to create/update/get profile information for users using Rest API’s for OpenAM 5.5.1.
We have users stored in openDJ 5.5. I have checked the doc and tried creating users during which it requires username/password in plain text. Is there any other alternative way of doing it using Rest APIs instead of sending the…[Read more] -
aniru2dh started the topic Open IG and Session in the forum Access Management 4 years ago
Hi Team,
I have configured openam as IDP and OpenIg as SP. Open IG protects an application which has links to third party applications which are acting as SP. When i login to application either via sp or IDP initiated, would it allows to perform SSO to the links part of the application. If yes, Would it be possible to control the session timeouts…[Read more]
-
aniru2dh replied to the topic Queries about Federation in the forum Access Management 4 years ago
@grk is it mandatory to have saml nameid format as part of AuthnRequest when OpenAM acting as IDP and third party as SP during an SP initiated transaction.
Thanks,
Anirudh. -
aniru2dh replied to the topic issue with SP Initiated Login in the forum Access Management 4 years ago
Also I see a different error message while accessing IDP Initiated URL for a different application. I suspect this is because of certificate issue. I see below errors in Federation logs.
libSAML:06/13/2018 08:34:47:072 PM IST: Thread: TransactionId
ERROR: Given final block not properly padded
libSAML2:06/13/2018 08:34:47:073 PM IST: Thread:…[Read more] -
aniru2dh replied to the topic issue with SP Initiated Login in the forum Access Management 4 years ago
I am novice in this topic.Could you please provide me more information about certificate revocation checks and how it impacts the request processing.
Thanks,
Anirudh. -
aniru2dh started the topic issue with SP Initiated Login in the forum Access Management 4 years ago
Hi Team,
I have setup OpenAM As IDP and Tableau as SP. The configuration setup on both sides is fine. We have imported the metadata from SP and the certificate. the certificate .cer which was provided by tableau was imported to keystore.jks and is available. When we access the IDP Initiated URL, it works fine. But the SP Initiated login fails…[Read more]
-
aniru2dh replied to the topic Federation Session Timeouts in the forum Access Management 4 years ago
@peter-major. We have tried using this setting but it did not work. Initially we were using Access Management 5.5.1 and identified that there is a bug with this version as per the below article.
https://bugster.forgerock.org/jira/browse/OPENAM-12703we have upgraded to version 6.0.0.1 to see if this resolves the issue. But this did not help, even…[Read more]
-
aniru2dh started the topic Federation Session Timeouts in the forum Access Management 4 years, 1 month ago
Hi All,
We are currently working on a POC to setup SAML Federation. we are looking for settings or options available at OpenAM to maintain the session timeouts consistently across IDP and SP. The SP need to honor the timeouts of IDP irrespective of the settings at SP side.
OpenAM is acting as IDP. What we would like to achieve is to have a sync…[Read more]
-
aniru2dh started the topic Queries about Federation in the forum Access Management 4 years, 1 month ago
Hi All,
1. I am looking for some documentation on configuring OpenAM 5.5.1 as both Hosted IDP and Hosted SP. Is it possible to configure a single instance of OpenAM as hosted IDP and hosted SP.
2. By Default when we create a hosted IDP/sp, the entity id defaults to the url of the OpenAM server. Is it possible to have a different url. if yes,…[Read more]
-
aniru2dh replied to the topic Issue with Federation in the forum Access Management 4 years, 1 month ago
Thanks @grk. We were able to solve the issue after making certain changes made at the service now end.
-
aniru2dh started the topic Issue with Federation in the forum Access Management 4 years, 1 month ago
Hi Team,
We are trying to setup Federation between OpenAM 5.0 and Service now where IDP is OpenAM and SP is Service now. We are facing issue after saml assertion is posted to service now during both idp/SP initiated login.
On Reaching Service now it says “Could not valid saml response”.
IS there any official document available on the OpenAM…[Read more]
-
aniru2dh replied to the topic Programmatically generate reset password link in the forum Access Management 4 years, 1 month ago
@manchandap were you able to get find out a solution for this use case. I am also looking out for something on similar lines.
-
aniru2dh started the topic Privileges to allow rest api calls for performing CRUDQ operations on Identities in the forum Access Management 4 years, 1 month ago
Hi All,
I have currently set Access Management 5.5 version in lab environment. I am working on using rest api’s to perform CRUDQ operations on identities as per the documentation:
https://backstage.forgerock.com/docs/am/5.5/maintenance-guide/#rest-api-crud-identityI am looking for privileges that could be assigned to a group containing few…[Read more]
-
aniru2dh replied to the topic Issue with Rest API in the forum Directory Services 4 years, 1 month ago
@robert-matthews: It is a copy paste, but I did check using an online tool to see if the json was valid or not. it says the json is valid so did not bother of typing this out. Will try it manually and see if it works. Thanks for the reply.
- Load More