Password Policy redirect in Policy Server
Article ID: 41404
Updated On:
Products
Issue/Introduction
When user account status invokes the password services (native or SiteMinder password policy), the user is redirected to the smpwservices. fcc page by default.
How to redirect user to a customized error page when password services are invoked?
Use case:
- SiteMinder Password Policy is disabled;
- Active Directory as User Directory;
- Defined User Directory with LDAP namespace in SiteMinder;
User account status (change password by next login/ user account is disabled) invokes password services and Policy Server redirects user to the default password services page – smpwervices. fcc.
Resolution
If Password Services are invoked and there is no SM password policy configured, set the environment variable NETE_PWSERVICES_REDIRECT at Policy Server, to a relative path for smpwservices. fcc or relative path for customized error page, e.g.: /siteminderagent/forms/smpwservices. fcc. If the error page is hosted on a specific server, define the full URL e.g.: http://_host.example.com/index.asp.
Policy Server will redirect user to the definitions page according to the NETE_PWSERVICES_REDIRECT environment variable, if either criteria are fulfilled:
The redirect URL in SM password policy is blank
OR
No SM password policy is defined
If the SM password policy is configured, specify the error page in the Redirect URL column or clear the column if you want it to default to the value associated with the NETE_PWSERVICES_REDIRECT environment variable.
NOTES:
If there's a SM password policy defined and relying on NETE_PWSERVICES_REDIRECT environment variable, Redirect URL needs to be cleared every time before you define or redefine value for the NETE_PWSERVICES_REDIRECT environment variable.
Attachments
Feedback
