19.3 IDM Login Portlet

The IDM Login portlet performs a very robust user authentication supported by Identity Manager (through Universal Password, password policies, and NMAS). The IDM Login portlet redirects to the other password portlets as needed during the login process.

Description: Description: Illustration

19.3.1 Requirements

The IDM Login portlet has the following requirements:

Topic

Requirements

Password policy

This portlet does not require a password policy, unless you want to use advanced password rules or let users click the Forgot Password link.

Universal Password

This portlet does not require Universal Password to be enabled, unless you want to use a password policy with advanced password rules.

SSL

This portlet uses SSL, so make sure that your application server is properly configured to support SSL connections to your LDAP realm.

19.3.2 Usage

To use the IDM Login portlet, you need to know about the following:

How IDM Login redirects to other portlets

At runtime, the IDM Login portlet redirects to other password portlets depending on what’s needed to complete the login process. For example:

If the user

IDM Login redirects to

Clicks the Forgot Password link

Section 19.7, IDM Forgot Password portlet

Needs to set up challenge questions and responses

Section 19.4, IDM Challenge Response portlet

Needs to set up their password hint

Section 19.5, IDM Hint Definition portlet

Needs to reset an invalid password

Section 19.6, IDM Change password portlet

Using grace logins

If you use a grace login, the IDM Login portlet displays a warning message that asks you to change your password and indicates the number of grace logins that remain. If you are on your last login, the IDM Login portlet redirects you to the IDM Change Password portlet.