Setup Advanced Password Services in Siteminder (APS) to send email for Expired Password
search cancel

Setup Advanced Password Services in Siteminder (APS) to send email for Expired Password

book

Article ID: 378403

calendar_today

Updated On:

Products

SITEMINDER

Issue/Introduction

This KB highlights the steps to enable email notifications upon user Authentication event with Expired password.

Environment

All Siteminder supported Releases.

Resolution

APS can be configured to send an email to the User that has an Expired password with that email including a Password change URL .

To get this working, the following needs to be done:

** 1) Change the APS.cfg to have the following 

NOTE --> change the path in the below to match your environment 

define NO_MAIL 
;;define NO_MAIL
define SMTP_SERVER     <This should be your mail server>
define MAIL_LOG             /<siteminder_path>/siteminder/log/APSMail.Log
define MAIL_PATH           /<siteminder_path>/siteminder/bin/Mail

///////////////////////////////////////////////////////////////////////

//<NO_MAIL>Server=<SMTP_SERVER>
Server=<SMTP_SERVER>
Login=<email of the admin account the emails will be sent from>    example [email protected]

///////////////////////////////////////////////////////////////////////
// The name of a log file where ALL mail will be logged (even if a mail
// server is not specified). Useful for debugging. 
//
// The information logged includes any status codes returned by the
// mail server.
///////////////////////////////////////////////////////////////////////

Log Path=<MAIL_LOG>

///////////////////////////////////////////////////////////////////////
// The Directory setting is similar to the PATH environment variable;
// it can contain one or more directories on which mail files can 
// reside. Directories will have attribute translation performed on 
// them. Multiple directories are separated by semicolons on Windows, 
// colons on Unix.
//
// This setting can support overrides. This is useful when multiple
// sets of email files exist and different ones should be used, 
// depending on user properties.
///////////////////////////////////////////////////////////////////////

Directory=<MAIL_PATH>


2) go under /<siteminder_path>/siteminder/bin/Mail   and backup the ExpiredPassword.email

3) Edit the ExpiredPassword.email and make sure you have the following 

[TO] {mail}
[FROM] <email of the admin account the emails will be sent from>    example [email protected]
[SUBJECT] Your password has expired.

Dear {Name},

Your password has expired.
Please use the link below to reset your Password

http://<yourdmoainhere>/SmCPW/SmCPW.exe

Regards


4) restart the Policy Server and test 
5) check the /<siteminder_path>/siteminder/log/APSMail.Log   and you should see something like this 


=======================================================================
Date: Thu, 26 Sep 24 18:35:55 GMT
From: [email protected]
Sender: [email protected]
Subject: Your password has expired.
To: Users_email that will be pulled from the mail attribute 
X-Mailer: <CA APS Mailer V12.8.0801.3003cv12.8.0801.3003>
MIME-Version: 1.0
-----------------------------------------------------------------------
Dear VDAAAA,

Your password has expired.
Please use the link below to reset your Password

http://yourdmoainhere/SmCPW/SmCPW.exe

Powered by Wolken Software