Process for end user to enroll and reset a forgotten password
A user who is enrolled for password self-service can use self-service to reset their password if it is forgotten. The process is simple and straightforward and should be easy enough for a user to perform.
Enrollment process overview
A user receives a Self-Service Enrollment notification through e-mail and clicks the Enroll link in the message.
The User’s browser opens, and the Web Portal is displayed.
The user enters their Active Directory Logon Name and Password.
After authenticating the user, the web portal will refresh and the Enroll dialog box is displayed.
The user chooses and then answers the required number of questions.
The questions are encrypted with reversible encryption so that they can be shown to the user later.
The answers are encrypted with one-way encryption so only a re-entry and re-verification of the hash can be done by the original person.
The user is asked to provide an alternative e-mail address and phone number. These details are encrypted with reversible encryption.
NOTE: The alternative e-mail address and phone number will be used in the future for two-factor authentication.
You can hide these fields from Reset my password and Unlock my accountWeb Portal forms with Attribute Policy. For more details, please see the Attribute policies article.
The user selects questions, the user’s answers and the user’s alternate details are put together and stored on the User Object within Active Directory at which point the user is considered as Enrolled.
Resetting a forgotten password
The user opens a web browser and enters the URL for theWeb Portal.
-
On the sign-on screen, click I forgot my password.
Enter your sign-on name in the name@domain.com or using the domain\username format.
Click Next.
Enter the answers to the questions that are presented.
Click Next.
Enter and confirm a new password.
Click OK.
A success message is displayed confirming the password reset was completed.
Comments
0 comments
Please sign in to leave a comment.