Symantec IGA

Expand all | Collapse all

SAML Federation and Password Reset

  • 1.  SAML Federation and Password Reset

    Posted 3 days ago
    This thread is mainly just to confirm my suspicions. If we configure SAML integration with Identity Manager and Identity Portal, you can no longer use Identity Manager for user password management. Since you are using SAML, when a password change comes through the IDP and the IDP changes the password on the Corporate Directory, Identity Manager is not aware of the password change in order to properly record the password history.

    Does anyone also support this theory?

  • 2.  RE: SAML Federation and Password Reset

    Posted 2 days ago

    Your suspicion is true, just as when SSO or AD Auth are configured as the authentication method with IDM. The use case for Password Reset could be different if IDM has the IDP directory service configured as a managed endpoint, but that linkage all depends on the deployment. Any password initially set in the IDM User Store is  out of synch with the IDP user store.

    Enrique Torres
    Enterprise Studio