{"id":1559,"date":"2010-03-11T02:40:08","date_gmt":"2010-03-11T06:40:08","guid":{"rendered":"http:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/"},"modified":"2010-03-11T02:40:08","modified_gmt":"2010-03-11T06:40:08","slug":"configuring-lost-password-management-in-oracle-access-manager","status":"publish","type":"post","link":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/","title":{"rendered":"Configuring Lost Password management in Oracle Access Manager"},"content":{"rendered":"

If you want to configure Lost password policy management using Oracle Access Manager for your application, then here it is how you can do. In real time scenario, once the user clicks on Lost Password link, the user will be challenged with questions registered during first login, followed by a change password.<\/p>\n

How can\u00a0we do this?<\/p>\n

1. Create an LDIF schema file with a new auxiliary object class and two new attributes as shown below.\u00a0 Here only 1 challenge attribute is used, if your requirement demands, you can add many more.<\/p>\n

dn: cn=schema
\nchangetype: modify
\nadd: attributetypes
\nattributetypes: ( 1.3.6.1.4.1.9999.1.1094.204 NAME ‘Challenge2’ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15\u00a0 )
\n\u00a0
\ndn: cn=schema
\nchangetype: modify
\nadd: attributetypes
\nattributetypes: ( 1.3.6.1.4.1.9999.1.1094.205 NAME ‘Response2’ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15\u00a0 )<\/p>\n

dn: cn=schema
\nchangetype: modify
\nadd: objectclasses
\nobjectclasses: ( 1.3.6.1.4.1.9999.1.1094.206 NAME ‘oblixAuxPerson4LPM’ DESC ‘User defined objectclass’ SUP top AUXILIARY MAY ( Challenge2 $ Response2 ) )<\/p>\n

2. Import the LDIF\u00a0file into the LDAP where OAM stores user data.<\/p>\n

3. Now we have to configure this new object class in the OAM. Goto the Identity System Console and click on Common Configuration tab. Click on object classes in left pane and Add the new class by selecting the type as Person object class.<\/p>\n

4. Goto Identity System Console -> System Configuration. Click password policy.<\/p>\n

5. Enter the URL for Lost Password Redirect URL<\/strong>. Please remember to enable both checkboxes of Successful Attempts Attribute <\/strong>and Failed Attempts Attribute <\/strong>with attributes oblastSuccessFulLogin and oblastFailedLogin respectively.<\/p>\n

6. Click on Lost Password Policy.<\/p>\n

7. Enter the name. You can specify the challenge phrases to be user defined or pre-defined or both. If you wish to have pre-defined, then Enter the challenge phrase in the text box and click Add.<\/p>\n

8. Enter the values for Minimum Challenges to be configured<\/strong> which specifies the no. of challenge phrases that will appear.<\/p>\n

9. Enter values for Challenge Response Minimum Length <\/strong>and Allow Duplicate Responses <\/strong>appropriately.<\/p>\n

10. Enter value for Minimum Challenges to be Answered <\/strong>which specifies the no. of challenges that user has to answer.<\/p>\n

11. Select value for Challenge Pose Type. All at Once <\/strong>allows all the challenge phrases to appear at the same time. One after the other <\/strong>allows the challenges to appear after the user answers the first question.<\/p>\n

12. Enable Send Email after password change <\/strong>if you want to configure SMTP stuff.<\/p>\n

13. In the end, enable check box of password policy.<\/p>\n

\u00a0In your custom application, you can insert the Lost Password link as shown below.<\/p>\n

http:\/\/machinename:portnumber\/identity\/oblix\/apps\/lost_pwd_mgmt\/bin\/lost_pwd_mgmt.cgi?program=passwordChallengeResponse&login=%scheme1_uid_parameter_value%%scheme2_uid_parameter_value%%schemeN_uid_parameter_value%&target=top<\/a><\/p>\n

14. To enable the password policies to the resources protected by the OAM, then modify the authentication scheme that protects those resources. In the validate_password plugin of your Authentication Scheme, add this obReadPasswdMode=”LDAP”,obWritePasswdMode=”LDAP” <\/strong>and the new validate_password plugin appears like this<\/p>\n

obCredentialPassword=”password”,obReadPasswdMode=”LDAP”, obWritePasswdMode=”LDAP”<\/strong><\/p>\n

For more information, check this<\/a>.<\/p>\n

References:<\/p>\n

Oracle Documentation<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

If you want to configure Lost password policy management using Oracle Access Manager for your application, then here it is […]<\/p>\n","protected":false},"author":115,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1559","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"\nConfiguring Lost Password management in Oracle Access Manager -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Configuring Lost Password management in Oracle Access Manager -\" \/>\n<meta property=\"og:description\" content=\"If you want to configure Lost password policy management using Oracle Access Manager for your application, then here it is […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/\" \/>\n<meta property=\"article:published_time\" content=\"2010-03-11T06:40:08+00:00\" \/>\n<meta name=\"author\" content=\"Masroof Ahmad\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Masroof Ahmad\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/\",\"url\":\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/\",\"name\":\"Configuring Lost Password management in Oracle Access Manager -\",\"isPartOf\":{\"@id\":\"https:\/\/onlineappsdba.com\/#website\"},\"datePublished\":\"2010-03-11T06:40:08+00:00\",\"author\":{\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\"},\"breadcrumb\":{\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/onlineappsdba.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Configuring Lost Password management in Oracle Access Manager\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/onlineappsdba.com\/#website\",\"url\":\"https:\/\/onlineappsdba.com\/\",\"name\":\"\",\"description\":\"Oracle Implementation & Training Experts\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/onlineappsdba.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb\",\"name\":\"Masroof Ahmad\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g\",\"caption\":\"Masroof Ahmad\"},\"url\":\"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Configuring Lost Password management in Oracle Access Manager -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/","og_locale":"en_US","og_type":"article","og_title":"Configuring Lost Password management in Oracle Access Manager -","og_description":"If you want to configure Lost password policy management using Oracle Access Manager for your application, then here it is […]","og_url":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/","article_published_time":"2010-03-11T06:40:08+00:00","author":"Masroof Ahmad","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Masroof Ahmad","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/","url":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/","name":"Configuring Lost Password management in Oracle Access Manager -","isPartOf":{"@id":"https:\/\/onlineappsdba.com\/#website"},"datePublished":"2010-03-11T06:40:08+00:00","author":{"@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb"},"breadcrumb":{"@id":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/onlineappsdba.com\/index.php\/2010\/03\/11\/configuring-lost-password-management-in-oracle-access-manager\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/onlineappsdba.com\/"},{"@type":"ListItem","position":2,"name":"Configuring Lost Password management in Oracle Access Manager"}]},{"@type":"WebSite","@id":"https:\/\/onlineappsdba.com\/#website","url":"https:\/\/onlineappsdba.com\/","name":"","description":"Oracle Implementation & Training Experts","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/onlineappsdba.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/909a876ed58d400faf82caf81d61bfdb","name":"Masroof Ahmad","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/onlineappsdba.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/10f9db7bdbbd7f9ccfbe9b2d208e5978fc28315e9c704383e639a926ea0fce5f?s=96&d=mm&r=g","caption":"Masroof Ahmad"},"url":"https:\/\/onlineappsdba.com\/index.php\/author\/masroof\/"}]}},"_links":{"self":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/1559","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/users\/115"}],"replies":[{"embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/comments?post=1559"}],"version-history":[{"count":0,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/posts\/1559\/revisions"}],"wp:attachment":[{"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/media?parent=1559"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/categories?post=1559"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/onlineappsdba.com\/index.php\/wp-json\/wp\/v2\/tags?post=1559"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}