...
- Enables the password method password.1 for Password Reset application.
- Creates a new OTP (One Time Password) method smtp-otp.unregistered.1 of type Unregistered SMTP method.
- By default the OTP method uses "mail/Session" mail context for sending the SMTP message, that can must be defined in ubilogin/custom/tomcat/mail-resources.xml. Please see configuration instructions here: Configuration of unregistered SMTP method.
- Enables the OTP method smtp-otp.unregistered.1 for Password Reset application.
If you want to use Password Reset for other passwords methods than password.1, or if you want to use SMS OTP instead of / in addition to SMTP OTP, please follow the instructions below.
Enable a password method for Password Reset
...
| Note | ||
|---|---|---|
| ||
With SQL Directory, the default value is the mobile attribute in the SQL view UbiloginAccountStatus. Setting a value for the directory.attribute.mobile changes the behavior, so that the value is searched from the SQL view UbiloginAuthorizer with the given attribute name (or names) as the name. |
Do not reveal existence of user account when initiating password reset
By default, after a user has initiated password reset by entering their login name, they are asked to enter their OTP only if the account exists. This behavior can be changed so that the OTP is asked in any case by setting the following configuration string in the password method. Note that this parameter affects only password reset and will not have effect on any other SSO UI screen or API call.
policy.password.dontRevealAccountStatus=true
This parameter is optional. If omitted the default value is false.