Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »

This article describes how Smart ID Digital Access component (Hybrid Access Gateway) is set up so that end users can change and/or reset their own password. This can be used when passwords are about to expire, already have expired or when an end user have forgotten their password.

Prerequisites

 Prerequisites
  • A license that enables self-service password reset is available.
  • Notification channels are set up, see Set up email or sms notification channel.
  • An authentification method with password is set up, see Set up authentication method.
  • A user with account operator rights in the Active Directory (AD) is set up. This user can change and reset AD passwords.
  • The AD has activated LDAPS.

Step by step instruction

 Log in to the Hybrid Access Gateway administration interface
  1. Log in to the Hybrid Access Gateway administration interface with your admin user.
 Configure user storage

If a user storage shall be used to store users, a certificate authority must be added before the user storage is configured, see Add certificates.

  1. In the Hybrid Access Gateway administration interface, go to Manage Accounts and Storage.
  2. Click Certificate > Add Certificate Authority...
  3. Select Microsoft Active Directory and click Next.

  4. Enter general settings, see example below.

    Example: Settings for user storage

    Display Name:AD-users

    Host: ad.nexustest.com

    Secondary host: (if needed)

    Port: 636

    Account:HAG_accountoperator

    Password: Password for the account

    Timeout: 15

  5. Check Use SSL.
  6. Check Password change enabled.
  7. Check Password reset enabled.
  8. Click Next.
 Enable end-user password reset
  1. In the Hybrid Access Gateway administration interface, go to Manage Accounts and Storage.
  2. Click Self Service > Password Reset.
  3. Check Enable End User Password Reset.

  4. Enter settings for the password. For help, click the ?-sign.

    Example: Password settings

    Reset code validity: 15

    Reset code length: 6

    Reset code characters: (enter allowed characters in reset code)

  5. Enter SMS and mail messages if applicable.

  6. Check Enable Time Locking of password reset requests.

  7. Enter settings for time locking.

    Example: Settings for time locking

    Time Lock Time-out: 120

    Time Lock Limit: 3


  8. Click Save.

Related information

Links

  • No labels

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions