5.1 Self Service Password Reset Configuration Worksheet
Use the following worksheet to gather the required information to use the Configuration Guide or to manually configure your environment.
Table 5-1 Self Service Password Reset Configuration Worksheet
|
Component |
|
Gather the following information: |
|---|---|---|
|
LDAP Directory Information |
|
|
|
|
Full DNS name or IP address and the port of the LDAP server NOTE:Do not use a virtual address or a proxy server address. |
|
|
LDAP server certificates Allow Self Service Password Reset to manage the certificates, or you must generate new certificates and import them into the Java keystore. For more information, see Exporting LDAP Certificates. |
|
|
Fully qualified LDAP distinguished name (DN) of the proxy administrator credentials For security reasons, create a proxy LDAP administrator that has sufficient rights to administer the users that log in to this system. |
|
|
Fully qualified DN of the root container of your LDAP users You can add additional containers after the Configuration Guide completes. |
|
|
Fully qualified DN of an LDAP administrators group A group in your LDAP directory to use to control administrative access to Self Service Password Reset. |
|
|
Fully qualified DN of an LDAP test user Self Service Password Reset uses this test user to periodically test the connection between the LDAP server and the system. |
|
|
|
LDAP attribute permissions You must change the LDAP attribute permissions to allow Self Service Password Reset to manage your users’ credentials. The Configuration Guide displays the specific permissions you must change for your environment. If you perform a manual install, you must change these same attribute permissions for your environment. For more information, see Configuring the LDAP Directories. |
|
Self Service Password Reset URL |
|
|
|
|
URL to this deployment of Self Service Password Reset that the users access The fully qualified hostname of the server running Self Service Password Reset. |
|
Challenge-Response Storage Local Database |
|
NOTE:Select one of the locations to store the challenge-response information: local database, LDAP, or remote database. |
|
|
Local database - Testing Only Use for testing only and nothing else must be done to your environment. |
|
Challenge-Response Storage LDAP |
|
|
|
|
LDAP You must extend the schema in your LDAP directory to allow Self Service Password Reset to manage the users. You can allow the Configuration Guide to extend the schema for you or you can manually extend the schema with the provided .ldif files. For more information, see Configuring the LDAP Directories. |
|
|
Challenge-Response Storage Remote Database |
|
|
|
|
Empty database You must install an empty database that Self Service Password Reset supports. The configuration process adds the appropriate tables and schema to the database. |
|
|
Database driver You must download the JDBC driver from the website of the database you are using. You upload the JAR or ZIP file during the configuration of Self Service Password Reset. |
|
|
Database class You must specify the Java class name of the JDBC driver. For example:
|
|
|
Database connection string This setting configures the Java JDBC database driver with the information required to reach your database server such as IP address, port number, and database name. For example:
|
|
|
Library Path - Microsoft SQL only Set the appropriate values for JAVA_OPTS in catalina.bat in the tomcat/bin folder. For more information, see the Tomcat documentation. |
|
|
Database user name A user name that Self Service Password Reset uses to authenticate to the database. |
|
|
Database password The password of the database user Self Service Password Reset uses to authenticate to the database. |
