Agent Guides › Web Agent Guide › Manage Password Services › FCC Password Services and URL Query Encryption › How to Enable User-Initiated Password Changes with FCCs (SecureURLs=Yes)

How to Enable User-Initiated Password Changes with FCCs (SecureURLs=Yes)

You can configure the FCC Password services features of SiteMinder to allow users to change their own passwords whenever they want.

Note: Use the following process only if your SiteMinder Web Agent configuration also has the value of the SecureURLs parameter set to yes.

To enable user-initiated password changes with FCCs, use the following process:

1. Confirm that your user directory contains attributes that support Password Policies.
2. Use the Policy Server User Interface to do the following tasks:
   1. Create an FCC-based password policy and protect the resources you want.
   2. Configure the password policy to allow authorized users to change their passwords.
   3. Set the value of the ValidTargetDomain parameter in your Agent configuration to the domain of the target resource you want to protect.
3. Create a password change URL in your FCC form that includes the following parts:
   • The FQDN of the logon server (example: http:logonserver.example.com)
   • The URI of the FCC based Password services (example: siteminderagent/forms/smpwservices.fcc?
   • The name of the SiteMinder Web Agent (SMAGENTNAME)
   • A target resource that is protected by SiteMinder (TARGET).
4. Open the following file on your web server:

   web_agent_home/samples/forms/smpwservices.fcc
   

   1. Locate the following line:

      @smpwselfchange=0
      

   2. Change the 0 (zero) at the end of the previous line to 1 (one), as shown in the following example:

      @smpwselfchange=1
      

   3. Save and close the smpwservices.fcc file.
5. Embed the URL you created in Step 3 as a link in one or more unprotected web pages, as shown in the following example:

   <a href="http:logonserver.example.com/siteminderagent/forms/smpwservices.fcc?SMAUTHREASON=
   34&SMAGENTNAME=$$smencode(smagentname)$$&TARGET=$$smencode(target)$$">Change Password</font></a>
   

6. Test the password change function with the following steps:
   1. Display a web page that has the password change link you created in Step 3.
   2. Click the password change link.

      The password change form appears.

   3. Fill out the password change form and submit it.

      If the password change is successful, a confirmation page appears, and shows a link to the protected target resource.

   4. Click the link and ensure that the resource appears.
   5. Close and re-open your browser. Try to access the protected resource using your new password.

      If you can access the resource with your new password, the password change is successful.