on 03-04-2014 5:29 PM
Hi Dears,
I have an issue related to End User Unlock and Password Reset.
We maintained Data Source as SU01 in SPRO, So that User can able to access GRC Application through End User Login with ECC System login
Details for raise a request.
If user is locked or forget ECC system password, then user not able to access GRC Application through End User Login with ECC System login Details for Unlock or reset Password.
In this situation, how user can unlock or reset the Password for ECC System.
Could you please provide the solution to resolve the Issue.
Note:- No LDAP or Acitive Directory.
System Details :- GRC AC 10.0 , SP12.
Regards,
Karnatak.
Then you dont need Authentication.
Regards,
Prasant
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks to Colleen and Prasant for responding and sorry for late Replay.
If i not maintain User Authentication, then any one can submit the request with any User ID.
because , it never ask password for any user ID. So we can not give access like this. Could you please suggest me any solution to resolve the issue.
i appreciate for swift response.
Regards,
Karnatak
Hi Rupesh
That was my warning on the post I linked you to
Quite a few PSS solutions have this as a setup (even SCN). The key thing you are reliant on is that the email account must be restricted to only the user to receive the password/link as well as appropriate Challenge Response Questions defined as part of their registration.
But yes, they can technically enter any User id to request the password and if they know the answers to the questions then they will get the password issue.
Your alternatively is to introduce another system (i.e. AD which you ruled out) or see if there is a way to introduce a second factor authentication (I don't believe this is delivered with GRC).
Regards
Colleen
Hi Rupesh
You either need to have a different Data Source - without LDAP it's looking unlikely as an option.
Alternatively, you switch off the verification so they can just enter their User Id and rely on reset sent to their email account. Your risk here is a user can go in and request a password for anther account. You are therefore relying on users email accounts to be restricted to their own access
Regards
Colleen
Ps - have a look at this SCN post where I mentioned the verification option
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
15 | |
4 | |
2 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.