<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
<p>Hello Rod,</p>
<p>I have never used this feature, but I'm 100% sure that Password
reset via email (Forgot password feature) works in 4.0-support
branch (I have just delivered our Advanced training with this
feature and latest 4.0-support midPoint). Maybe you want to try
also that one.</p>
<p>See
<a class="moz-txt-link-freetext" href="https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration">https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration</a></p>
<p>(especially
<a class="moz-txt-link-freetext" href="https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration#ResetPasswordConfiguration-Resetpasswordbymail">https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration#ResetPasswordConfiguration-Resetpasswordbymail</a>)<br>
</p>
<p>Best regards,</p>
<p>Ivan<br>
</p>
<div class="moz-cite-prefix">On 2. 11. 2020 15:25, Rod Holman via
midPoint wrote:<br>
</div>
<blockquote type="cite"
cite="mid:BY5PR20MB28996247B62FEA0F7F088B35A5100@BY5PR20MB2899.namprd20.prod.outlook.com">
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<meta name="Generator" content="Microsoft Word 15 (filtered
medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]-->
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:#954F72;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:"Courier New";}
p.msonormal0, li.msonormal0, div.msonormal0
{mso-style-name:msonormal;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle20
{mso-style-type:personal;
font-family:"Calibri",sans-serif;
color:windowtext;}
span.EmailStyle22
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1">
<p class="MsoNormal"><span style="color:#1F497D">Hello all,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">I forgot to
specify that we are using Midpoint 4.0.2. Is the reset
password feature working for this release? If it’s not we
will attempt to use the Rest API to reset forgotten
passwords. If it is a working feature please give some
possibilities for our error.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D">Thank you very
much,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal">Rod Holman<o:p></o:p></p>
<p class="MsoNormal">DBA/Developer<o:p></o:p></p>
<p class="MsoNormal">Ottawa Area ISD<o:p></o:p></p>
<p class="MsoNormal">616-738-8940 Ext. 4054<o:p></o:p></p>
<p class="MsoNormal"><span style="color:#1F497D"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1
1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b>From:</b> midPoint
<a class="moz-txt-link-rfc2396E" href="mailto:midpoint-bounces@lists.evolveum.com"><midpoint-bounces@lists.evolveum.com></a> <b>
On Behalf Of </b>Rod Holman via midPoint<br>
<b>Sent:</b> Thursday, October 22, 2020 8:08 AM<br>
<b>To:</b> <a class="moz-txt-link-abbreviated" href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a><br>
<b>Cc:</b> Rod Holman <a class="moz-txt-link-rfc2396E" href="mailto:rholman@oaisd.org"><rholman@oaisd.org></a><br>
<b>Subject:</b> [midPoint] 500 Error - Can't instantiate
forgetpassword.PageShowPassword()<o:p></o:p></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div style="border:solid #9C6500 1.0pt;padding:2.0pt 2.0pt 2.0pt
2.0pt">
<p class="MsoNormal"
style="line-height:12.0pt;background:#FFEB9C"><span
style="font-size:10.0pt;color:#9C6500">CAUTION:</span><span
style="font-size:10.0pt;color:black"> This email
originated from outside of the organization. Do not click
links or open attachments unless you recognize the sender
and know the content is safe.<o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span
style="font-size:12.0pt;font-family:"Times New
Roman",serif"><o:p> </o:p></span></p>
<div>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Courier
New"">Hello,<o:p></o:p></span></p>
<p class="MsoNormal"><span
style="font-size:10.0pt;font-family:"Courier
New"">we set up the credential reset mechanism using
security questions. When we click on “forgot password”
the username and email are authenticated and the reset
questions are displayed. When the questions are answered
and “Send” is clicked we get a 500 error on the web
interface (forgetpassword.PageShowPassword). The password
is changed, but we don’t know what it has been changed
to. We have tried many things and have exhausted our
searches. We also noticed several similar emails in the
archives that don’t show a solution. Our Security Policy
credentials section is listed below. We also have the log
attached with the error at the top of the log. Please let
me know if you need additional information.<o:p></o:p></span></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><img
style="width:5.9479in;height:2.5312in"
id="Picture_x0020_1"
src="cid:part1.EB2EACF2.B108DA93@evolveum.com" class=""
width="571" height="243"><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><securityPolicy<o:p></o:p></p>
<p class="MsoNormal">….<o:p></o:p></p>
<p class="MsoNormal"><credentials><o:p></o:p></p>
<p class="MsoNormal"> <password><o:p></o:p></p>
<p class="MsoNormal">
<minOccurs>0</minOccurs><o:p></o:p></p>
<p class="MsoNormal">
<lockoutMaxFailedAttempts>5</lockoutMaxFailedAttempts><o:p></o:p></p>
<p class="MsoNormal">
<lockoutFailedAttemptsDuration>PT3M</lockoutFailedAttemptsDuration><o:p></o:p></p>
<p class="MsoNormal">
<lockoutDuration>PT15M</lockoutDuration><o:p></o:p></p>
<p class="MsoNormal"> <valuePolicyRef
xmlns:tns="<a
href="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
moz-do-not-send="true">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>"
oid="283ec720-4073-4c9f-b072-fbcfe95ae27f"
relation="org:default" type="tns:ValuePolicyType"><o:p></o:p></p>
<p class="MsoNormal"> <!-- Active password
policy --><o:p></o:p></p>
<p class="MsoNormal"> </valuePolicyRef><o:p></o:p></p>
<p class="MsoNormal">
<historyLength>10</historyLength><o:p></o:p></p>
<p class="MsoNormal"> </password><o:p></o:p></p>
<p class="MsoNormal"> <securityQuestions><o:p></o:p></p>
<p class="MsoNormal">
<lockoutMaxFailedAttempts>5</lockoutMaxFailedAttempts><o:p></o:p></p>
<p class="MsoNormal">
<lockoutFailedAttemptsDuration>PT3M</lockoutFailedAttemptsDuration><o:p></o:p></p>
<p class="MsoNormal">
<lockoutDuration>PT5M</lockoutDuration><o:p></o:p></p>
<p class="MsoNormal"> <valuePolicyRef
xmlns:tns="<a
href="http://midpoint.evolveum.com/xml/ns/public/common/common-3"
moz-do-not-send="true">http://midpoint.evolveum.com/xml/ns/public/common/common-3</a>"
oid="283ec720-4073-4c9f-b072-fbcfe95ae27f"
relation="org:default" type="tns:ValuePolicyType"><o:p></o:p></p>
<p class="MsoNormal"> <!-- Active password
policy --><o:p></o:p></p>
<p class="MsoNormal"> </valuePolicyRef><o:p></o:p></p>
<p class="MsoNormal">
<questionNumber>2</questionNumber><o:p></o:p></p>
<p class="MsoNormal"> <question id="2"><o:p></o:p></p>
<p class="MsoNormal"> <identifier><a
href="http://midpoint.evolveum.com/xml/ns/public/security/question-2#q001</identifier"
moz-do-not-send="true">http://midpoint.evolveum.com/xml/ns/public/security/question-2#q001</identifier</a>><o:p></o:p></p>
<p class="MsoNormal">
<enabled>true</enabled><o:p></o:p></p>
<p class="MsoNormal"> <questionText>What
is your favorite Book?</questionText><o:p></o:p></p>
<p class="MsoNormal"> </question><o:p></o:p></p>
<p class="MsoNormal"> <question id="3"><o:p></o:p></p>
<p class="MsoNormal"> <identifier><a
href="http://midpoint.evolveum.com/xml/ns/public/security/question-2#q002</identifier"
moz-do-not-send="true">http://midpoint.evolveum.com/xml/ns/public/security/question-2#q002</identifier</a>><o:p></o:p></p>
<p class="MsoNormal"> <questionText>What
is your favorite Animal?</questionText><o:p></o:p></p>
<p class="MsoNormal"> </question><o:p></o:p></p>
<p class="MsoNormal"> </securityQuestions><o:p></o:p></p>
<p class="MsoNormal"> </credentials><o:p></o:p></p>
<p class="MsoNormal"> <credentialsReset><o:p></o:p></p>
<p class="MsoNormal">
<name>userPasswordReset</name><o:p></o:p></p>
<p class="MsoNormal"> <securityQuestionReset><o:p></o:p></p>
<p class="MsoNormal"> <name>Reset password
using security question</name><o:p></o:p></p>
<p class="MsoNormal"> </securityQuestionReset><o:p></o:p></p>
<p class="MsoNormal"> </credentialsReset><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Thanks for your assistance.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Rod Holman<o:p></o:p></p>
<p class="MsoNormal">DBA/Developer<o:p></o:p></p>
<p class="MsoNormal">Ottawa Area ISD<o:p></o:p></p>
<p class="MsoNormal">616-738-8940 Ext. 4054<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
midPoint mailing list
<a class="moz-txt-link-abbreviated" href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a>
<a class="moz-txt-link-freetext" href="https://lists.evolveum.com/mailman/listinfo/midpoint">https://lists.evolveum.com/mailman/listinfo/midpoint</a>
</pre>
</blockquote>
<pre class="moz-signature" cols="72">--
Ivan Noris
Senior Identity Engineer
evolveum.com
</pre>
</body>
</html>