Contact us at 408.675.5020 or sales@identitymaestro.com

Home Page

Knowledge Base Search     Advanced

Step 1: Manage User Account Access

Article ID: 1722
Last updated: 13 Sep, 2018

Users must be assigned to a Self-Service Assignment to use the Forgot Your Password? feature and access their own Self-Service Portal.

Self-Service Access Control

Providing a user access to the Forgot password feature and to a personal Self-Service portal requires add that user to a Self-Service assignment in the SELF-SERVICE module in the ADMINISTRATION portal.  Each Self-Service assignment can be related to a Directory group, or to a Directory OU container.  If a user is a member of the group or container related to the Self-Service assignment, the user will see the SELF-SERVICE tab when they log into Identity Maestro.

To manage the Self-Service module:

  1. Login to Identity Maestro as a Delegated Administrator.
  2. Select ADMINISTRATION on the main menu bar.
  3. In the Administration portal, select the SELF-SERVICE module in the main button bar.

Create a Self-Service Role Group

You can add a new Directory group to use as a Self-Service Role group:

  1. Select Step 1: Manage User Access Control in the navigation pane.
  2. Select Create.and Create Group.


     
  3. In the New Group window,select the Browse icon for the Parent Container.  Navigate and select the container where you want to create the new Group.



    Provide a suitable group name and description and click Create.

Add a New Self-Service Assignment

There are two ways to add a new Self-Service assignment:

Add a New Assignment Using a Role Group

To add a new assignment using a Role group to control user access:

  1. Select Step 1: Manage User Access Control in the navigation pane.
  2. Select Add.


     
  3. In the Add Group or Container window, click the browse icon for the Group or Container field.


     
  4. Navigate to and select a Directory Role group and click OK.


     
  5. In the Add Group or Container window, choose another Role group-based assignment to copy option settings from.


     
  6. Click Accept.
  7. Confirm that the new assignment is displayed in the navigation pane.

Add a New Assignment Using a Container

To add a new assignment using a Directory container to control user access:

  1. Select Step 1: Manage User Access Control in the navigation pane.
  2. Select Add.


     
  3. In the Add Group or Container window, click the browse icon for the Group or Container field.


     
  4. Navigate to and select a Directory container and click OKThis assignment will apply to all user entities that are located in that OU container.
  5. You cannot copy options from a group-based assignment, so leave the Copy from field empty, or copy options from an existing container-based assignment.


     
  6. Click Accept.
  7. Confirm that the new assignment is displayed in the navigation pane.


     

Manage a Self-Service Assignment

If you created a Self-Service assignment and copied the options from an existing Self-Service assignment, then all you need to do is modify those options to match the needs of the new Self-Service assignment.

In this example, we are going to set the options for the Contractors OU container Self-Service assignment as it requires enabling features and setting options from scratch.

Set "Reset Password" Options

  1. Select the new Self-Service assignment in the navigation panel.
  2. Select the Reset Password page.
  3. Check the All user to reset password(s) option.  That will display the rest of the options for this page.


     
  4. Select the desired options.  The Email password and Different directory and email password options do not work with Active Directory or Azure Active Directory.


     
  5. Save the changes.

Set "Forgot Password" Options

  1. Select the Forgot Password page.
  2. Check the Enable 'Forgot Password' option.


     
  3. Set the desired options.  The Minimum answers defined value must be equal to or higher than the Minimum questions answered value.


     
  4. Check the questions to display and check any questions that are Required.  Do not require answers to more questions than set for the Minimum questions answered value.
  5. Save the changes.

Define Which Groups Users can Self-Manage

This option permits you to define a list of groups that the user will be able to add their user to or remove their user from.  This is typically used to add users to email enabled groups.

  1. Select the Managed Lists page.
  2. Check this option and click Configure.


     
  3. In the Managed Directory Groups window, click Add new.
  4. In the Search groups window, add a value to base your search on and click Search.


     
  5. Select the groups to add the Managed Lists for this Self-Service assignment.  This will be groups that the users can self-manage.
  6. Click Add Selected to add those groups.
  7. In the Selected groups window, click Close.


     
  8. Save the changes.

     

Add Custom Tasks

This page allows the administrator to select custom tasks that will be added to the Self-Service personal portal menu structure.  In this example, a custom task is selected.  Step 4: Manage Task Forms will explain how to configure a custom task for Self-Service.

  1. Select the Custom Tasks page.
  2. Select the desired custom task in the Available custom tasks list, click the right arrow button to move that task to the Selected custom tasks list.


     
  3. Save the change.
  4. Select OPTIONS > Apply Settings to apply the assignment to the Operator portal.

How to Confirm Effective Access

To confirm the effective access of an individual:

  1. Select Effective Access in the navigation pane.


     
  2. In the User Effective Access page click the browse icon for the user field.  Navigate to and select the desired user and click OK.


     
  3. The effective access for that user will be displayed.

How to Remove an Existing Assignment

To remove an existing Self-Service Assignment:

  1. Select the assignment in the navigation pane and select Remove.


     
  2. Click OK.


     
  3. Confirm that the assignment is no longer visible in the navigation pane.

This article was:   Helpful | Not helpful Report an issue


Article ID: 1722
Last updated: 13 Sep, 2018
Revision: 10
Views: 70
Comments: 0
print  Print email  Email to friend share  Share pool  Add to pool comment  Add comment
Prev     Next
How the Self Service Module Works       Step 2: Configure "Forgot Password"