force user to change the password on first login

This topic has 7 replies, 3 voices, and was last updated 3 years, 10 months ago by chris-fry.

  • Author
    Posts
  • #23763
     eppinger
    Participant

    is it pssible to force users to change the password on the first login. In ldap we have the parameter pwdReset and this parameter will be set ‘true’ if the password was reset by administrator or the user account was new created.

    #23811
     xinlian
    Participant

    so what’s the question? Just make pwdReset to true when you created the new users

    #23812
     eppinger
    Participant

    if I set this parameter then the user cannot login and if this parameter is false then the user can login without problem

    #23813
     xinlian
    Participant

    Why this parameter equal ‘true’ then the user cannot login? Because that’s what I did currently, when create new user give user a temp password and set pwdReset to ‘true’

    #23814
     eppinger
    Participant

    do you use openidm login page or openam?

    #23815
     xinlian
    Participant

    openam

    #23816
     eppinger
    Participant

    :) we use only openidm, but i think we must install openam to force password change.

    #24036
     chris-fry
    Participant

    Hi eppinger,

    Got a similar proof-of-concept working using a mapping from a boolean attribute in IDM to iplanet-am-user-password-reset-force-reset in OpenDJ and a Scripted Authentication module in OpenAM to force the redirect to a custom change password app.

    Here’s another forum post about it: https://forum.forgerock.com/topic/change-password-on-next-login-custom-redirect/

    Chris

Viewing 8 posts - 1 through 8 (of 8 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?