Password History issue in OpenIDM

This topic has 7 replies, 4 voices, and was last updated 5 years, 1 month ago by awilliams.

  • Author
    Posts
  • #12655
     manasha.shanthi
    Participant

    Hi,

    we have created the password history policy for openidm users as per the Openidm -4- integration guide 14.1.1 section. But we are able to successfully reset or change the password of the openidm users using last password. we are not getting any error message for password history validation.

    Apart from this we have tried other way for password history policies which is mentioned in the multiple password samples.We are getting the following error message when we try to reset the password for openidm users
    ” Unable to reset your password
    TypeError: Cannot read property “password” from undefined (/path/to/openidm/bin/defaults/script/policy.js#969(eval)#47) in /path/to/openidm/bin/defaults/script/policy.js#969(eval) at line number 47 at column number 0″

    Thanks in Advance,

    #12664
     Mike Jang
    Spectator

    Hi,

    This is an error in our OpenIDM 4.0 documentation. We have the appropriate procedure in our OpenIDM 4.5 documentation, here: https://backstage.forgerock.com/#!/docs/openidm/4.5/integrators-guide#chap-passwords

    Thanks,
    Mike

    #12676
     manasha.shanthi
    Participant

    Hi,
    Thank you. I will check.

    #13368
     pier
    Participant

    Hi,

    I’m jumping on this topic as I encounter the exact same behaviour, with the same error (Cannot read property “password” from undefined etc).

    I first tried to make this work using the procedure from openidm-4.0 integrator guide, then I found out this post which explains that the version 4.0 of the guide has an error, and that I should use the guide from openidm-4.5, which I did.

    The 4.5 guide is not very easy to follow as it jump from the sample guide to the integrator guide.

    I tried to follow up with those but I could not make it work, so my question :

    Does anyone know of a good, clear and easy to follow guide in order to make the password history policy a reality ?

    I’ve been trying quite some different setup but none worked as expected so far.

    Thanks for your tips !

    #13369
     Mike Jang
    Spectator

    Hi Pier,

    Can you be more specific where you run into problems with our password history procedure?

    If you’re willing, we’d love your help fixing our documentation.

    Thanks,
    Mike

    #13756
     pier
    Participant

    Hi Mike,

    Sorry for the late catch-up ! I’ve been quite busy lately …

    I updated my openidm instance from 4.0 to 4.5 in order to get a better chance to make this password history to work but I did not get this chance :(

    My first felling about the documentation is not that this is hard to follow, only that it could be a bit easier to follow for the newbies (which I definitely am !).

    I am willing to help you make the doc easier, just let me know how.

    I have a question though : Does the process explained in the 4.5 doc about password history implementation work ? I am more than ready to accept that I am the weak point here ! :) Just need to know if this doc is validated by users ….

    Thanks Mike for the support.

    #13776
     Mike Jang
    Spectator

    Hi Pier,

    I understand busy :)

    When I wrote the relevant section for OpenIDM 4.5 (Creating a Password History Policy), I tested the process myself, until it worked for me.

    Our samples are designed to help users get up to speed quickly in specialized configurations. You could try our Multiple Password Sample to see how we demonstrate the process based on two LDAP (OpenDJ) servers.

    If you find a problem with our documentation, please feel free to file a JIRA, describing what you would do differently. You’re also welcome to fork our public Git repo (https://stash.forgerock.org/projects/OPENIDM/repos/openidm-docs/browse ) and submit a PR. (If you like, I’ll go into more detail on that process.)

    Thanks,
    Mike

    #17332
     awilliams
    Participant

    Mike,

    I’m hoping you may clarify a couple of points about your sample code related to password history.

    The integrator’s guide states we should copy files as outlined in the samples guide mentioned in the following URL.

    https://backstage.forgerock.com/docs/openidm/4.5/samples-guide#sample-multiple-passwords

    In section 3.9. Storing Multiple Passwords For Managed Users, there is a Note stating, “This sample does not support creation of new users in the Admin UI.” I get it, there will not be a password history yet once a user is created. However, we would like to utilize a password history via the Admin GUI after the user is created. Is this possible with your sample code, or must one use the command line to take advantage of your password history code?

    Thank you,
    Albert

Viewing 8 posts - 1 through 8 (of 8 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?