Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-15054

Missing "password change" aci in the documenation for AM 6.x 's external identity store

    XMLWordPrintable

    Details

    • Rank:
      1|hzyh1b:
    • AM 2019.9 - Crane
    • 1
    • No
    • No
    • No
    • Yes and I used the same an in the description

      Description

      Bug description

       AM 6.x is missing the "password change" aci in ForgeRock documentation for external identity store

       

      From this bug OPENAM-11398, it is mentioned that these aci(s) are missing 

       

      aci: (targetcontrol="1.3.6.1.4.1.42.2.27.8.5.1 || 1.3.6.1.4.1.36733.2.1.5.1") (version 3.0; acl "Allow anonymous access to behera draft and transaction control"; allow(read) userdn="ldap:///anyone";)aci: (targetattr="userPassword") (version 3.0; acl "Allow password change"; allow (write) userdn="ldap:///self"

       

      These aci(s) are found in the /webapps/openam/WEB-INF/template/ldif/opendj/opendj_userinit.ldif  but there is no official documentation what need to do with this file. ( It could be only used in the embedded store, it seem )

      As a matter of fact, if customers want to change password, these aci need to be implement in AM 's external identity store and documentation can help to highlight that these aci(s) are found in this file - opendj_userinit.ldif

       

       

       

       

       

       

       

       

        Attachments

          Issue Links

            Activity

              People

              chris.lee Chris Lee [X] (Inactive)
              sam.phua Sam Phua
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: