Chat now with support
Chat with Support

Enterprise Single Sign-On 9.0.2 - Enterprise Access Management Customization Guide


’Change Password’ Window

Enterprise SSO opens the change password window when it detects that an application has requested a password change. This request can be triggered by one of the following actors:

  • The application itself.
  • The user.
  • Enterprise SSO.

The window prompts the user to register a new password for the application.


Activating the Customization


When this feature is activated, Enterprise SSO looks for definitions of supported window types in HTML files.

When, during an interaction with the user, Enterprise SSO cannot find or cannot read the appropriate file, or if the contents of the file do not meet Enterprise SSO requirements (see Organizing the Content of the files), Enterprise SSO uses the appropriate standard window instead, as if the customization feature were not activated.

  1. Place the UseHtmlSSODialogs DWORD value:
  • With GPO under the HKEY_LOCAL_MACHINE\SOFTWARE\Policies\
    Windows registry key.
  • Manually under the HKEY_LOCAL_MACHINE\SOFTWARE\Enatel\
  1. Set the value to 1.

The customization is activated.

NOTE: To deactivate customization, set the value to 0.




Managing the HTML Files

Placing the Files

When the customization feature is activated, Enterprise SSO tries to load window definition files from a directory on the local hard disk.

By default, Enterprise SSO tries to load files from its current working directory, i.e. the directory in which Enterprise SSO is installed. However the directory can be specified explicitly by creating a new string value, called HtmlDialogDirectory, in the Windows Registry. This value can be set under the same keys as the UseHtmlSSODialogs value: see the Procedure in Activating the Customization.

If you set this value, it must be the full path name of a directory on the workstation's local hard disk.


Naming the Files

The default file names used by Enterprise SSO for the three interactions described in SSO Window/Interaction Types are the following:

  • NewAccount.html
  • BadAccount.html
  • ChangePassword.html

However, each time one of these interactions occurs, it occurs in the context of a particular managed application.

If a file exists and its name starts with the name of the E-SSO application object, continues with a '-' character and ends with the default file name; this file is used to define the window for the interaction. That is, if Enterprise SSO manages a user's access to an application called Supply Management, it tries to load a file called Supply Management-NewAccount.html when collecting the user name and password from the user.

If this file does not exist, Enterprise SSO tries to load a file called NewAccount.html. This means that it is possible, for example, to have two files for password-change interactions: a file called
Supply Management-ChangePassword.html to be used to change passwords in the Supply Management application and the ChangePassword.html file to be used to change passwords in all other applications.

Related Documents