Bypassing the Change Password Challenge after Authentication
When users successfully authenticate by answering one or more questions, by default they are challenged by the system to provide a new password. You can configure Waveset to bypass the change password challenge, however, by setting the bypassChangePassword system configuration property for one or more Waveset applications.
For instructions on editing the system configuration object, see Editing Waveset Configuration Objects.
To bypass the change password challenge for all applications following successful authentication, set the bypassChangePassword property as follows in the system configuration object.
Example 3–2 Setting the Attribute to Bypass the Change Password Challenge
<Attribute name="ui"
<Object>
<Attribute name="web">
<Object>
<Attribute name=’questionLogin’>
<Object>
<Attribute name=’bypassChangePassword’>
<Boolean>true</Boolean>
</Attribute>
</Object>
</Attribute>
...
</Object>
...
To disable this password challenge for a specific application, set it as follows.
Example 3–3 Setting the attribute to Disable the Change Password Challenge
<Attribute name="ui">
<Object>
<Attribute name="web">
<Object>
<Attribute name=’user’>
<Object>
<Attribute name=’questionLogin’>
<Object>
<Attribute name=’bypassChangePassword’>
<Boolean>true</Boolean>
</Attribute>
</Object>
</Attribute>
</Object>
</Attribute>
...
</Object>
...
|
- © 2010, Oracle Corporation and/or its affiliates