Knowledge Base Search Advanced
The Self Service module provides users with a web-based portal to manage their forgot password settings, modify their personal information and add or remove themselves from specific email-enabled Directory groups. Here are some planning considerations:
For the Self-Service Module:
If a group is assigned to a Self Service Role Group assignment, the SELF-SERVICE tab will be visible to members of that group when they login to the Identity Maestro portal. If the Forgot Password feature is enabled in the Self-Service Assignment, members of that group will be able to change passwords using without having to login by using the Forgot Your Password? link.
Careful planning and preparations will result in the creation of the correctly functioning “self-service” assignments that will support users. Consider the following planning factors:
Identity Maestro Self-Service offers two distinct Forgot Password scenarios:
It is important to remember to Save changes before changing focus.
The Setup Wizard added the following:
The Setup Wizard builds an Identity Maestro container with the following users and groups to support Self-Service role-based management.
The Setup Wizard also creates a Sample container that acts as a sandbox container that can be used to test create forms against, which has a sample-self group.
All users in the Sample container are configured with Asdf!234 set at the password, are disabled by default, and are members of the sample-self group.
The Setup Wizard create the following create forms.
The Setup Wizard will create a default Self-Service Form which is applied at the primary Directory level.
Identity Maestro administrators should examine each field and confirm if the field should be set to read-only or if you want to allow the user to modify the value of that field for their own user account.
The Setup Wizard creates default Create Profiles for Sample users. Those Create Profiles are not configured with the group to add new users to. If you want to add the sample-create group to that list:
Identity Maestro includes two MANAGE tasks that can be used by Identity Maestro operators to assist users with their Forgot Password questions and answers.
The Forgot Password Questions task provides the Identity Maestro operator with the ability to set, reset or clear Forgot Password answers for the user, to set a question as required, and to add a new question for the user. Note: Identity Maestro operators cannot see a user's existing Forgot Password answers. Use the Veruiy Forgot Password task to confirm if what the user is trying is actually a valid answer.
Saved changes will be immediately applied to users using the Forgot Password feature at the login screen.
The Verify Forgot Password feature is used to verify if a user's Forgot Password answers are correct. Operator's can use this as a form of verification that they are speaking with the correct individual, and to test that changes made with the Forgot Password Questions task (above) are working as expected.
Selecting this task will open a dialogue window where an Operator can test Forgot Password answers for the user. If an answer is incorrect, the UI will explain the issue.