NetIQ Self Service Password Reset (SSPR) is a Web-based password management solution. It eliminates the users’ dependency on administrators to change their passwords. It reduces the workload of the helpdesk and in turn reduces the cost incurred by the company. Users can change their password and reset forgotten password based on the configured challenge-responses. SSPR also allows administrators to ensure that all passwords in the organization comply with the established policies. For detailed information about NetIQ Self Service Password Reset, visit the NetIQ Self Service Password Reset Documentation Web site.
SSPR 3.1 enhances the product capability and resolves several previous issues. Many of these improvements were made in direct response to suggestions from our customers. We thank you for your time and valuable inputs. We hope you continue to help us ensure our products meet all your needs.
SSPR 3.1 provides the following features and enhancements:
SSPR 3.1 provides an easy-to- use installer that simplifies the application installation on Windows platforms. With this installer you can install Apache Tomcat, Java, and the SSPR application together. For more information about installation, see Installing SSPR
in the NetIQ Self Service Password Reset 3.1 Administration Guide.
SSPR 3.1 supports multiple Active Directory domains that uses a single SSPR configuration. The LDAP Profiles tab is added in the Configuration Editor page to support directory profiles. The same functionality can be used to support multiple LDAP directories and all directories must be of the same type, either all Active Directory or all NetIQ eDirectory.
In addition to the extensive activity statistics available with previous versions of SSPR, the new directory report module in SSPR 3.1 provides enhanced reporting that uses cached records. This module gathers summary and detailed record data of user's password status and other password self service related fields.
A collector for NetIQ Sentinel is now available to read and parse data from SSPR 3.1 audit records.
SSPR 3.1 supports integration of SSO with NetIQ Identity Manager components. This support is available when you configure the IDM server as the OAuth provider in the SSPR Configuration Editor page.
SSPR 3.1 includes several enhancements in Configuration Editor. The look and feel of the Configuration Editor page is improved and new features such as, searching the configuration settings and keeping track of changes are included.
SSPR 3.1 supports maintaining multiple Password and Challenge Policies. You can apply policies to any set of users matching an LDAP search filter.
New intruder tracking mechanisms for token destination addresses, and form field entries add additional protection for users against direct internet attacks. Configuration options are available for each intruder tracking type. Also, security settings include IP address restrictions, required header values, and IP address.
When using Active Directory, SSPR 3.1 can now enforce AD password policies during the forgotten password reset. This feature is supported only on Windows Server 2008 R2 SP1 or later.
SSPR 3.1 supports hashing algorithms such as, MD5, SHA256+Salt, SHA512+Salt, PBKDF2WithHmacSHA1, and SCrypt in addition to the previously supported Plaintext, SHA1, SHA1+Salt and Bcrypt options.
The Administration user interface is reorganized to make the application easier to manage.
SSPR 3.1 adds or enhances the localization for German, French, Spanish, Chinese Traditional, Japanese, and Brazilian Portuguese.
For detailed information about hardware and software requirements, see Installation Requirements
in the NetIQ Self Service Password Reset 3.1 Administration Guide.
SSPR is available for download in the following two formats:
(Recommended for new installation) SSPR_3.1_installer.EXE: An executable file that contains SSPR Web archive and tools.
SSPR_3.1.ZIP: A compressed zip file that contains SSPR Web archive and tools
For more information about how to install SSPR, see Installing SSPR
in the NetIQ Self Service Password Reset 3.1 Administration Guide.
For information about how to upgrade SSPR, see Upgrading SSPR
in the NetIQ Self Service Password Reset 3.1 Administration Guide.
NetIQ Corporation strives to ensure our products provide quality solutions for your enterprise software needs. The following issue is currently being researched. If you need further assistance with any issue, please contact Technical Support.
Issue: When a user logs in to the application that uses SSPR, the report on the Data Viewer summary page displays an incorrect value of the LastLogin time for that user.
Workaround: There is no workaround. This is an Active Directory issue.
Issue: If you are using Internet Explorer version 9, the configuration file is not uploaded.
Workaround: When configuring use the Internet explorer version 10 or later. You can also use any other supported browser.
Issue: In the Administration user interface when you check the audit log, headers of the fields are not displayed properly.
Workaround: Add or remove any field from the audit log table. Making some changes in the table corrects this issue.
Issue: When you use Internet Explorer version 8 or 9, some fields under Directory Reporting such as, the Summary, DataViewer and ReportEngineStatus do not display any data.
Workaround: To view data for all the fields in Directory Reporting, use Internet Explorer 10 or other supported browsers.
Issue: When you configure SSPR using Oracle Directory server, the user cannot reset the password. This issue occurs during the forgotten password process.
Workaround: Configure SSPR with the eDirectory server.
Our goal is to provide documentation that meets your needs. If you have suggestions for improvements, please email Documentation-Feedback@netiq.com. We value your input and look forward to hearing from you.
For detailed contact information, see the Support Contact Information Web site.
For general corporate and product information, see the NetIQ Corporate Web site.
THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT ARE FURNISHED UNDER AND ARE SUBJECT TO THE TERMS OF A LICENSE AGREEMENT OR A NON-DISCLOSURE AGREEMENT. EXCEPT AS EXPRESSLY SET FORTH IN SUCH LICENSE AGREEMENT OR NON-DISCLOSURE AGREEMENT, NETIQ CORPORATION PROVIDES THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SOME STATES DO NOT ALLOW DISCLAIMERS OF EXPRESS OR IMPLIED WARRANTIES IN CERTAIN TRANSACTIONS; THEREFORE, THIS STATEMENT MAY NOT APPLY TO YOU.
For purposes of clarity, any module, adapter or other similar material ("Module") is licensed under the terms and conditions of the End User License Agreement for the applicable version of the NetIQ product or software to which it relates or interoperates with, and by accessing, copying or using a Module you agree to be bound by such terms. If you do not agree to the terms of the End User License Agreement you are not authorized to use, access or copy a Module and you must destroy all copies of the Module and contact NetIQ for further instructions.
This document and the software described in this document may not be lent, sold, or given away without the prior written permission of NetIQ Corporation, except as otherwise permitted by law. Except as expressly set forth in such license agreement or non-disclosure agreement, no part of this document or the software described in this document may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, electronic, mechanical, or otherwise, without the prior written consent of NetIQ Corporation. Some companies, names, and data in this document are used for illustration purposes and may not represent real companies, individuals, or data.
This document could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein. These changes may be incorporated in new editions of this document. NetIQ Corporation may make improvements in or changes to the software described in this document at any time.
U.S. Government Restricted Rights: If the software and documentation are being acquired by or on behalf of the U.S. Government or by a U.S. Government prime contractor or subcontractor (at any tier), in accordance with 48 C.F.R. 227.7202-4 (for Department of Defense (DOD) acquisitions) and 48 C.F.R. 2.101 and 12.212 (for non-DOD acquisitions), the government’s rights in the software and documentation, including its rights to use, modify, reproduce, release, perform, display or disclose the software or documentation, will be subject in all respects to the commercial license rights and restrictions provided in the license agreement.
© 2014 NetIQ Corporation and its affiliates. All Rights Reserved.
For information about NetIQ trademarks, see https://www.netiq.com/company/legal/.