3.3 Emergency Password Method Support Configuration

  1. Create a new authentication class with the following parameters:

    1. Display name: Emergency Password Class

    2. Java class: Other

    3. Java class path: com.authasas.aucore.nam.method.emergencypassword.EmergencyPasswordClass

  2. Create a new authentication method for the class:

    1. Display Name: Emergency Password Method

    2. Class: Emergency Password Class

    3. Keep the Overwrite Temporary User and Overwrite Real User check boxes cleared.

    4. Add the used user store to User Stores.

  3. Add applicable Optional Properties (KEY/Value).

  4. Create a new authentication contract for the method in the Configuration tab:

    1. Display name: Emergency Password Contract

    2. URI: emrgpasswordandldap/uri

    3. Configure Methods. Select one of the following options:

      • Add only Emergency Password Method from the Available Methods list. In this case the Identifies User check box must be selected. Emergency Password Method will provide a request of LDAP Password. After user enters it, he/she will be asked to enter the Emergency Password.

      • Add any standard method from the Available Methods list as the first one and Emergency Password Method as the second one. In this case the Identifies User check box should be obligatory cleared for Emergency Password Method.

    4. Keep the Satisfiable by External Provider check box cleared.

  5. Specify applicable values for the new authentication card in the Authentication Card tab:

    1. ID: EmergencyPassword_ID

    2. Text: NetIQ Emergency Password Authentication

    3. Image : <Select Local Image>, then select NAM_Emergency_password.png from the icons folder of the NAM plug-in distribution kit.

  6. Update both the IDP and the MAG.

  7. Update NAM Server configuration.

IMPORTANT:If Emergency Password contract is configured to use only Emergency Password method, it will be required to configure both LDAP Password & Emergency Password (two-factor) and Emergency Password (one-factor) chains in the Chains section (the two-factor chain must be higher than an appropriate one-factor chain) and enable them in the NAM event of the Advanced Authentication Administrative Portal. If Emergency Password contract is configured to use combination of a standard method and Emergency Password method, it will be required to configure and enable only Emergency Password (one-factor) chain.

The following standard methods are supported by NAM plug-in:

  • Name/Password - Form

  • Name/Password - Basic

  • Secure Name/Password - Form

  • Secure Name/Password - Basic