FIM 2010 R2 – Web-Based Password Reset, Part 3

FIM lets users reset their passwords only after authenticating them against answers to commonly asked security questions that they registered with. One major complaint about FIM 2010’s QA Gate implementation is that it does not allow ITPro to specify some sort of validation or policies on the answers. It’s possible that users might enter “abc”…

3

FIM 2010 R2 – Web-Based Password Reset, Part 2

Web-Based Password Reset is not just about writing a web client in ASP.NET. I mentioned that a few times when talking to different people. Everyone can do that by writing their own WCF client. If reverse engineering the FIM WebService protocol is too hard, there is the open source client supported by the community. In…

7

How Does Lockout Gate Work

I am back! I haven’t forgotten you all. I was just busying with RTM Update 1 which is now live on Microsoft Update. In Forefront Identity Manager – Credential Management, Part 2, i talked about what Lockout Gate is capable of doing and in the Password Reset Deployment Guide, it mentions if you put the…

0

Forefront Identity Manager – Credential Management, Part 2

FIM ships with three Authentication Activities (a.k.a. Authentication Gates) that are used primarily in Self-Service Password Reset (SSPR). Question and Answer GateThis is the most obviously one in SSPR. During registration mode, it prompts the user with a list of pre-defined questions (e.g. What’s your first pet’s name?) The user is required to answer a…

0