If you are using the internal database for self-service users, you can specify which user attributes are required, editable, read-only, or hidden from the user in the Self-Service Console. You can also customize display labels for each attribute.
All user attributes that are stored in an external identity source are read-only. Users cannot modify this information through the Self-Service Console. For example, users whose accounts are stored in Active Directory cannot use the Self-Service Console to change their Self-Service passwords.
Required fields are editable.
If you create custom user attributes for an identity source, you can specify which fields display in the user profile.
If the e-mail address attribute is editable and Self-Service is configured to send e-mail notifications for changes to the user’s profile or the on-demand authentication delivery option, Authentication Manager sends notification to both the old and new e-mail addresses when the e-mail address is changed.
In the Security Console, click Setup > Self-Service Settings.
Click User Profiles.
From the Choose an Identity Source drop-down list, select an identity source.
In the Core Attributes section, select View and manage user profile attribute details for the attributes that you want to customize.
In the Custom Attributes section, select View and manage user profile attribute details for the attributes that you want to customize.