Previous Topic: Add a Change Password Link to the Password Services CGI

Next Topic: Add a Change Password Link to the Password Services Servlet

Allow Specific Users to Change Their Passwords in CGI

If you want to allow only certain users to change their own passwords, complete the following procedure.

To allow specific users to change their passwords

  1. Modify the permissions for the PWLogin.template file:
    1. Navigate to the following location:

      web_agent_installation_dir/pw

      where web_agent_installation_dir is the installed location of the Web Agent.

    2. In File, Properties, deselect the read-only attribute.
  2. Edit the text in the PWLogin.template file:
    1. Open PWLogin.template in a text editor.
    2. Add the following line to the template at an appropriate location:
      <a href="/siteminderagent/pwcgi/smpwservicescgi.exe?
      SMAUTHREASON=34&TARGET=$$TARGET$$">Change Password</a>
      
    3. Save the file.
  3. Access the Administrative UI.
  4. Create an Authentication Scheme with the following settings:
  5. Optionally, create a new policy domain.

    The policy domain should include the user directory that contains the users that are allowed to change their own passwords.

    If you do not create a new policy domain, select an existing policy domain.

  6. Create a realm that specifies the directory that you are protecting. In the Authentication Scheme list box, select the authentication scheme you created in step 4.
  7. Create a rule under the realm that specifies the resource(s) that you are protecting.

    Note: If you create a rule that specifies all of the resources (*) in the directory that you are protecting, you do not have to create separate rules for localized Password Services.

  8. Create a policy that binds the rule you created and the users/groups who are allowed to change their passwords.

More information:

Create and Use a Localized Password Services Properties Files


Copyright © 2010 CA. All rights reserved. Email CA about this topic