|
|
|
Redirect Group Box
The Redirect group box is where you define where users should be redirected if they enter a password that is deemed invalid by the password policy.
Specifies the URL to which users should be redirected when the password policy determines that an invalid password has been entered in the Redirection URL field.
To enable redirection, you must specify the virtual path to the Password Services CGI or servlet. By default, the Policy Server fills in the path to the Password Services CGI:
http://myserver.mycompany.org/siteminderagent/pwcgi/
smpwservicescgi.exe
If you want to use the Password Services servlet, you should specify its path:
http://myserver.mycompany.org/siteminderagent/pwservlet/PSWDChangeServlet
If you choose to set up a custom Password Services directory on a non-default web server, be sure to do the following:
Copy the smpwservicescgi.exe to a location accessible by the non-default web server.
<custom directory>/pwcgi
<custom directory>/pw
When a user is redirected to the Password Services CGI or servlet, it takes the information from the Policy Server, determines why the password is invalid, and displays a form that provides information or requests additional credentials from the user.
Make sure that the Password Services CGI or servlet is not protected. If SiteMinder is protecting directories above the servlet, create a realm that specifies the following:
Do not create a policy for this realm.
Note: If a user who is accessing resources through an Agent that is not using an SSL connection must change passwords, the user’s new password information will be received over the non-secure connection. To provide a secure change of passwords, set up a password policy that redirects the user over an SSL connection using the Redirection URL field.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |