Educause Security Discussion mailing list archives
Microsoft Identity Manager - Automatic registration
From: "Gjerdingen, Steven E" <segjerdingen () UNWSP EDU>
Date: Tue, 15 Jan 2019 19:46:39 +0000
We are in the process of implementing Microsoft Identity Manager (formerly Forefront) and hope to use it in the very near future to perform our password reset functions. Our biggest issue preventing other non-Microsoft reset tools from working well for us in the past has been the requirement of registration ahead of time prior to using the tool. Students need to know their password ahead of time to login in and register, if registration doesn't occur automatically. When the need arises for a reset, they are dead in the water because they didn't register. Registration makes sense if they need to go in ahead of time to fill out their own security questions. However, we are hoping to allow personal emails and/or cell phones as a means of performing "OTP" (one time pass). We've figured out a way to auto-populate these fields in MIM based on data from an ERP. However, using this as the sole means of performing a reset does not seem to work at all as the user cannot perform a reset unless they've "registered". Has anyone found a way around this issue? Steve Gjerdingen Systems Team University of Northwestern - St. Paul 3003 Snelling Avenue North St. Paul, MN 55113 651-628-3322
Current thread:
- Microsoft Identity Manager - Automatic registration Gjerdingen, Steven E (Jan 15)