This came up in our discussions with the client. What we are looking at
is something like this:
Only for new users, you should have a link in the GINA or the CLE to be
able to see a limited version of User App password self-service. But the
challenge here is that only for the "new" users you should be able to
enter a known value(something that the user knows) as password hint.
Based on this he updates his challenge response questions, sets up his
new password and then can go back and login from the GINA(because his
password is now synced to AD as well).

For the existing users though, we should be able to just use the normal
Forgot Password link on the CLE and allow to change the password

Is the above scenario practically possible to achieve with NetIQ IDM?
Or is there another approach that someone might suggest.


rohit_everett's Profile: https://forums.netiq.com/member.php?userid=4650
View this thread: https://forums.netiq.com/showthread.php?t=48907