Password Policy redirect in Policy Server
search cancel

Password Policy redirect in Policy Server


Article ID: 41404


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On SITEMINDER




When user account status invokes the password services (native or SiteMinder password policy), the user is redirected to the smpwservices. fcc page by default.

How to redirect user to a customized error page when password services are invoked?

Use case:

  1. SiteMinder Password Policy is disabled;
  2. Active Directory as User Directory;
  3. Defined User Directory with LDAP namespace in SiteMinder;

User account status (change password by next login/ user account is disabled) invokes password services and Policy Server redirects user to the default password services page – smpwervices. fcc.



If Password Services are invoked and there is no SM password policy configured, set the environment variable NETE_PWSERVICES_REDIRECT at Policy Server, to a relative path for smpwservices. fcc or relative path for customized error page, e.g.: /siteminderagent/forms/smpwservices. fcc. If the error page is hosted on a specific server, define the full URL e.g.:

Policy Server will redirect user to the definitions page according to the NETE_PWSERVICES_REDIRECT environment variable, if either criteria are fulfilled:

     The redirect URL in SM password policy is blank


     No SM password policy is defined

If the SM password policy is configured, specify the error page in the Redirect URL column or clear the column if you want it to default to the value associated with the NETE_PWSERVICES_REDIRECT environment variable.     




If there's a SM password policy defined and relying on NETE_PWSERVICES_REDIRECT environment variable, Redirect URL needs to be cleared every time before you define or redefine value for the NETE_PWSERVICES_REDIRECT environment variable.



1558721757064000041404_sktwi1f5rjvs16w70.png get_app