You are trying to ensure that users who self-register to the system are forced to change their password at next logon.
You have tired doing all of the following but it doesn't work:
1) In the toPhysical() method of an LAH, set %ENABLED_STATE% to 0x01000000
2) In the toPhysical() method of an LAH, set %ENABLED_STATE% to 16777216
3) Modified the Self Reg task to set the ForcePasswordChange field to a default value of 1 (type checkbox)
4) Modified the Self Reg task to set the ForcePasswordChange field to a default value of 1 (type hidden)
5) Modified the Self Reg task to set the Disabled State field to a default value of 16777216
Any of the following will resolve this issue:
- set the default value of the ForcePasswordChange field on the task screen to the word "true" (obviously this will affect every user)
- POST a TEWS request with the attribute "|forcePasswordReset|" and value "true"
- ensure that an LAH that sets the value of the %ENABLED_STATE% attribute in the toPhysical() method is the last LAH in the LAH execution order for the IME (IDM's built-in LAH's override the value thus set otherwise)