Since some of these operations require additional attributes, default forms must be updated to include these attributes.
The resource definition already defines the attributes that should be passed to the various views.
Enable, Disable forms: DenyGroups
Deprovision form: DenyGroups (optional)
Expired Login, Change Password, Change My Password forms: HTTPPassword (must be secret), ID file
Rename form: certifierIDFile, credentials (must be secret)