Symantec IGA

 View Only
  • 1.  SAML Federation and Password Reset

    Posted Oct 13, 2021 10:10 AM
    This thread is mainly just to confirm my suspicions. If we configure SAML integration with Identity Manager and Identity Portal, you can no longer use Identity Manager for user password management. Since you are using SAML, when a password change comes through the IDP and the IDP changes the password on the Corporate Directory, Identity Manager is not aware of the password change in order to properly record the password history.

    Does anyone also support this theory?


  • 2.  RE: SAML Federation and Password Reset

    Posted Oct 14, 2021 11:17 AM
    Andre,

    Your suspicion is true, just as when SSO or AD Auth are configured as the authentication method with IDM. The use case for Password Reset could be different if IDM has the IDP directory service configured as a managed endpoint, but that linkage all depends on the deployment. Any password initially set in the IDM User Store is  out of synch with the IDP user store.

    ------------------------------
    Enrique Torres
    [JobTitle]
    Enterprise Studio
    [CompanyName]
    ------------------------------