Password Manager 5.8.2 - Administrator Guide (AD LDS edition)

About Password Manager Getting Started Upgrading Password Manager to 5.8.1 Password Manager Architecture Management Policies
Checklist: Configuring Password Manager Understanding Management Policies Configuring Access to the Administration Site Configuring Access to the Self-Service Site Configuring Access to the Helpdesk Site Configuring Questions and Answers Policy Workflow Overview Custom Workflows Custom Activities Self-Service Workflows Helpdesk Workflows User Enforcement Rules
General Settings Password Policies One Identity Hybrid Subscription One Identity Starling Reporting Appendix A: Accounts Used in Password Manager for AD LDS Appendix B: Open Communication Ports for Password Manager for AD LDS Appendix C: Customization Options Overview Glossary

How to Use reCAPTCHA on Password Manager Sites

How to Use reCAPTCHA on Password Manager Sites

To display reCAPTCHA images on the Self-Service site, include the Display reCAPTCHA activity in required workflows. To require users to reply to a reCAPTCHA challenge before authentication, place the Display reCAPTCHA activity before any authentication activity in a workflow designer.

For more information on using reCAPTCHA in workflows, see Display reCAPTCHA.

You can also use reCAPTCHA on the Find Your Account page of the Self-Service site and require users to reply to the reCAPTCHA challenge before searching for their accounts. For more information, see Configuring Security Options.

System Requirements for Using reCAPTCHA

System Requirements for Using reCAPTCHA

To be able to use reCAPTCHA on the Password Manager sites, make sure the following requirements are met:

References

References

Use the following resource for additional information on the reCAPTCHA service:

User Enrollment Process Overview

User Enrollment Process Overview

To enforce users to register with Password Manager you can use two enforcement rules: Invite users to create/update Q&A profiles and Remind users to create/update Q&A profiles.

To start the enrollment process, you need to enable and configure the Invite users to create/update Q&A profiles rule. This rule sends email notifications to the users specified in the rule’s scope, inviting them to create or update their Q&A profiles. When configuring email notifications for this rule, you can insert a hyperlink to the Self-Service site. To add the hyperlink, enter the required URL in the email notification body. For example, http://mydomain.com/user. Note, that you cannot specify the hyperlink text.

To configure the Invite users to create/update Q&A profiles enforcement rule, you need to specify the conditions under which users should be notified. For example, users are not registered with Password Manager, users’ answers are shorter than required or users have specified the same answers for several questions. These conditions correspond to the Q&A profile settings that are part of the Q&A policy. For more information, see Configuring Q&A Profile Settings. For more information on configuring this enforcement rule, see Invite Users to Create/Update Profiles.

Note, that only one email notification is sent to each user. If you want to remind users that they should register with Password Manager or update their Q&A profiles and send multiple emails, enable and configure the Remind users to create/update Q&A profiles enforcement rule.

The Remind users to create/update Q&A profiles enforcement rule can notify users via email. When configuring this rule, you can specify several notification scenarios. For each scenario, you should set the time period since the invitation date.

For more information on configuring this enforcement rule, see Remind Users to Create/Update Profiles.

If you want to configure different notification scenarios for different user groups, you can create several Management Policies, and within each Management Policy configure the Remind users to create/update Q&A profiles enforcement rule appropriately for different user groups.

Related Documents