When a user forgets his password, he uses the "Forgot Password" link on the main IDM page. He puts the user ID, and then answers his security questions. After that, IDM generates a random password, according to the Password Policy defined, and shows a temporary password.
He can use temporary password to log in to IDM console and change his password.
My question is, Is it possible to use the temporary password to login via windows logon and change his password?
Currently, I tested to use temporary logon. It does not work.
Are you trying to log into a Windows Domain? If so do you have that domain acquired with the AD connector and an account linked to a provisioning user (which matches up with the IM user)? If this is a standalone Windows workstation (not a domain) then look at the Windows connector.
Microsoft Connectors - CA Identity Management & Governance Connectors - CA Technologies Documentation
Yes, i try to use the temporary password to login to windows domain. His account already linked to provisioning user and AD endpoint.
Which IM version are you using exactly?
Have you verified (in the etatrans.log) that the temp password is not sent to AD (but possibly rejected due to not matching the password policy configuration etc)?
IDM VApp 14.1 Cp5. I a;ready verify the eatranslog. no error to identified.
If the replies made so far have not answered your question, please open a support case so we can investigate.
I have already open the ticket to CA support. currently,i'm waiting for the solution from engineer.