000032147 - Identity Confirmation questions not displayed for RSA Via Lifecycle & Governance while using external password reset

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 6Show Document
  • View in full screen mode

Article Content

Article Number000032147
Applies ToRSA Product Set: Via Lifecycle & Governance (L&G), Identity Management and Governance (IMG)

 
IssueIdentity Confirmation is a feature in RSA Via Lifecycle &Governance Password Management which will allow users to reset their password without challenge response questions only once and use their Primary and Secondary identity attributes to confirm their identity
Hover to Requests >Password Management > Settings > Identity Confirmation
User-added image

It would seem that Identity Confirmation attributes would be displayed while performing external password reset once the Identity Confirmation is turned On and Identity attributes are set.  However this is not the default product behavior.
Identity Confirmation attributes will be displayed if the Challenge questions and answers are not enrolled by the user.
If the Challenge questions and answers are  enrolled ,secondary attributes will not be displayed irrespective of whether IDENTIFY ATTRIBUTE CONFIRMATION setting is ON/OFF
 
ResolutionUse Cases for Identity Confirmation are shown below.
CASE 1:
USER ENROLLED CHALLENGE QUESTIONS and ANSWERS               : Not Enrolled
IDENTITY CONFIRMATION (Attributes configured)                                 : On
Expected Result:
Page 1 - User name + Primary attributes (optional)
Page 2 - Secondary identity attributes.
Page 3 - Reset Password
TEST 1:
1.User John Ataya has not enrolled his Challenge questions.
2.Now when he tries to reset the password externally
User-added image

3.You can see the Identity Confirmation attributes being requested
User-added image
CASE 2:
USER ENROLLED CHALLENGE QUESTIONS and ANSWERS               : Enrolled
IDENTITY CONFIRMATION                                                                           : On
Expected Result:
Page 1 - Username + Primary attributes (optional)
Page 2 - Challenge questions
Page 3 - Reset Password

TEST 2:
1.Now user John Ataya enrolls his Challenge questions(Home -> Manage Access -> My Passwords -> View -> Challenge Questions
User-added image

2.Now when he tries to reset the password
3.You can see the Identity Confirmation attributes not being displayed.
User-added imageUser-added image
 

Outcomes