Hi all ,
We encountered a scenarios that AD admin reset password for the user (due to forget his window password) and at the Engina , after key in the new reset password , the AA detected there is a discrepancies, hence ask the user for the answer to his secret question.
However, user cannot remember any of the answer as well and he cannot proceed .
Currently his wallet has a lot of profiles and delete and recreate user is not an option because involves application password changes as well.
any better idea or any workaround ?
This topic has been locked.
4 replies Latest Post - 2013-01-29T04:21:03Z by GilbertLam
Pinned topic ESSO 8.2 Forget Windows AD password and answer to secret questions.
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
Updated on 2013-01-29T04:21:03Z at 2013-01-29T04:21:03Z by GilbertLam
SystemAdmin 110000D4XK704 PostsACCEPTED ANSWER
Re: ESSO 8.2 Forget Windows AD password and answer to secret questions.2013-01-22T23:58:26Z in response to GilbertLamIf a user is not able to remember their answers to the Secret question there is no way to reset the questions.
Are you able to have the user try to reset their password using a Authorization code that you can issue from the Access Admin?
For security pruposes there is no way to reset the Secret questions once they have been set.
Re: ESSO 8.2 Forget Windows AD password and answer to secret questions.2013-01-25T03:41:39Z in response to SystemAdminDaryl ,
Thanks for your reply. We did many testing scenarios to "crack" this scenarios , IBM L2 come back with user creation , i believe IBM need to come out some new feature to assist the user to retain the wallet then recreating it.
Hope someone else come with a new idea how to overcome this without delete the user.
jtoma 270001YEC6746 PostsACCEPTED ANSWER
Re: ESSO 8.2 Forget Windows AD password and answer to secret questions.2013-01-26T02:33:08Z in response to GilbertLamUnfortunately Daryl is right. The use of the "secret" is to protect the user's credentials. Someone users keep personal credentials in their wallet like for online banking and I'm sure that they appreciate the extra security.
However, one option which may or may not work for you organization is the disabling of personal secrets. IMS creates and uses a system wide secret so that user wallets/accounts can be reset without the user needing to remember a secret. You can find this option in the System Policies of the IMS.