Is there away to verify a proper email being used when registering in FIM Registration Portal? How to catch mistypes or incorrect emails?

Thanks,

Brandon

I take you are referring to SSPR registration?

If so, there are constraints you can put into the SSPR workflow to catch miss formatting or enforce certain criteria.

As far as making sure the email exists, there is nothing out of the box.  

 

Thanks Nosh. Are their any guides that you are aware of that will get my going in the right direction when putting in constraints for the SSPR workflow?

Right direction being which part? Validate email address is a valid email address or simply making sure the email looks in the right format?

For the First, I don't have a ready-made sample, but the only thing that comes to my mind is to customize the AuthN workflow.

For the second, that is a simple regex setting under answer constraint field.  I am not sure how much you can accomplish with this, besides making sure there is an "@" sign and no spaces.

Validating an email address entered in the Registration Portal is valid. Upon registration maybe a confirmation email sent to the registration email saying "You've recently registered your account" type deal.

I don't think that is the question though. 

Validating an email address entered in the Registration Portal is valid. Upon registration maybe a confirmation email sent to the registration email saying "You've recently registered your account" type deal.

Yes, but then you would use another mail address. I mean - to send notification you use one of attributes in FIMService. What if FIMService has "usermail@domain.com" as User1's mail attribute and this user would specify "mymail@hotmail.com" during SSPR?

Notification sent by system would go to "usermail@domain.com"...

Only during password reset, user gets notification to this address.

But, if you would use built-in one-time password activity, it sets the same email address in one of FIMService's attributes - so in fact you can send mail to it when it is set/changed - but you'd need to create own notification activity as default one is using only Mail field.

The attribute is One-Tme Password Email Address.

Thanks Dominik, this is what I was looking for. I will give it a try today.

Dominik I am having a bit of trouble trying to get this to work. I actually realized instead of sending an email upon registration, I'd rather send one upon a reset. 

An example would be a user has registered a Secondary email for their password registration. Ex. User1@gmail.com

This user then forgets their password and resets it. Upon resetting their password they will receive their code at User1@gmail.com, but I'd like to also send a notification to their company email User1@company.com

Some say to just include [\\Target] in the recipient field of the activity. But I tried that and did not receive the 2 emails

 I would like to use the mail attribute in AD for that notification of the reset. 

Any thoughts would be greatly appreciated. 

Hi Brandon,

Do you want to send OTP to two emails at once?

Only idea that comes to me now is to create distribution group where you have two emails inside: one internal and one external. But it would be hard to change it after user re-registrates himself with new external email.

But it makes no sense for me as user would not be able to access his internal mailbox to read OTP code if (s)he doesn't remember the password. And if (s)he remembers it, why (s)he tries to reset it?

Or do you want just a notification that "there was an attempt to reset your password" being sent to internal email? Then you can do that creating an Action Workflow with standard email activity.

The second part, a notification to be sent to their internal email Letting them know there was an attempt.

When creating the activity what should be in the recipient box? I can't seem to get mail as a available attribute in the lookup. 

Yes, you only specify [//Target] there, no [//Target/Mail] or [//Target/Email].

OK so I created a new workflow and added an notification activity with the recipient being Target and I just reused the email template for testing.

Now how would I go about having this work flow fire off upon a reset?

Never mind I believe I got it. I opened the Anonymous Users can reset their password MPR and viewed it in Advance View. Clicked the extended Attributes tab then added my newly created work flow to the Action Work flow section.

Does that sound about right?

Or would that not make sense, since if the password was reset by an intruder, the owner of that email wouldn't receive that notification anyways.

Is there a way to have that notification fired off upon visiting the reset portal and once a user's name is typed in have it notify them before the question gate?

 

• Edited by Brandon NighGrow 17 hours 30 minutes ago

Never mind I believe I got it. I opened the Anonymous Users can reset their password MPR and viewed it in Advance View. Clicked the extended Attributes tab then added my newly created work flow to the Action Work flow section.

Does that sound about right?

Yes, sounds correctly

Or would that not make sense, since if the password was reset by an intruder, the owner of that email wouldn't receive that notification anyways.

Is there a way to have that notification fired off upon visiting the reset portal and once a user's name is typed in have it notify them before the question gate?

 

No, there is no way to send it then using out of the box FIM functionality.

Never mind I believe I got it. I opened the Anonymous Users can reset their password MPR and viewed it in Advance View. Clicked the extended Attributes tab then added my newly created work flow to the Action Work flow section.

Does that sound about right?

Or would that not make sense, since if the password was reset by an intruder, the owner of that email wouldn't receive that notification anyways.

Is there a way to have that notification fired off upon visiting the reset portal and once a user's name is typed in have it notify them before the question gate?

 

• Edited by Brandon NighGrow Wednesday, April 22, 2015 1:53 PM

Never mind I believe I got it. I opened the Anonymous Users can reset their password MPR and viewed it in Advance View. Clicked the extended Attributes tab then added my newly created work flow to the Action Work flow section.

Does that sound about right?

Or would that not make sense, since if the password was reset by an intruder, the owner of that email wouldn't receive that notification anyways.

Is there a way to have that notification fired off upon visiting the reset portal and once a user's name is typed in have it notify them before the question gate?

 

• Edited by Brandon NighGrow Wednesday, April 22, 2015 1:53 PM

Never mind I believe I got it. I opened the Anonymous Users can reset their password MPR and viewed it in Advance View. Clicked the extended Attributes tab then added my newly created work flow to the Action Work flow section.

Does that sound about right?

Or would that not make sense, since if the password was reset by an intruder, the owner of that email wouldn't receive that notification anyways.

Is there a way to have that notification fired off upon visiting the reset portal and once a user's name is typed in have it notify them before the question gate?

 

• Edited by Brandon NighGrow Wednesday, April 22, 2015 1:53 PM