I use the standard password change function from domino to change the password in an extended directory catalog.
So I open this link in a browser: http://serverurl/names_extended.nsf?ChangePassword
I type the old password and the new password twice, but the password is not changed in the person document.
Any ideas on this?
Related
I am currently trying to create a edit password page (to change the user password).
I want to tell to the user that if he enters the same password than the old one then I will show an error message which shows that two passwords match and that's useless to change it.
Take a look https://prnt.sc/pe8xur
Is it a security issue if I do that ?
Thanks!
I currently have a password reset with the following flow:
generate a temporary password
email it to the user
The user then clicks on a link in the email, taking them to a page where they can enter their temporary password along with a new one.
My question is, how can I securely achieve a password reset without making the user have to copy a nasty temporary password?
I have considered sending the password as a query string in the link in the email since HTTPS traffic is encrytped, but I have read that this is still a poor choice due to various reasons.
Any suggestions are welcome, thanks!
(I have purposely left out information about my stack as I am looking for a technology agnostic solution)
Is it possible to protect a folder with .htaccess by asking just a password?
I don't want a username.
HTTP auth will always ask for a username and password, and not just a password. The server doesn't generate the form that pops up, your browser does. And that form will always have a username and password. You can't tell it to only ask for a password.
But what you can do is generate an htpasswd file with a blank username so when the login window opens, people only need to enter a password and can leave the username field blank.
I have a website that uses Windows Authentication to authenticate its users. Normally when a user accesses the site on an IE browser the username field is populated with the computers domain name and user name. This is usually incorrect and the user enters the correct username and their password and can access the site.
I have a user now on Windows 7 IE8(I beleive) and the username field in the credential prompt is being autopopulated with domain\userName except the username is incorrect and we cannot change it. The user is unable to log into the site because of this. Has anyone experienced this before? Does anyone know why the username field cannot be changed? Solutions I have tried:
Clearing cache and stored form data/passwords etc
Site is in users trusted sites. So I had the user change the settings to "Prompt for username and password" but the prompt still comes up with the username autopopulated and does not let her change it.
I have never run into this before. Our users do not have any issue logging in, its just this one corporate location that was just set up and is running Windows 7(Rest of the company is under Windows XP) If it matters this is a sharepoint 2010 web application
Any help on this would be greatly appreciated as I have an entire group of users with this problem. Im willing to bet this would not be an issue in a different browser but they need to be able to use IE for application compatibility reasons.
Thanks!
I was able to fix it by doing the following:
Go to Start, Control Panel, User Accounts, then click Manage Your Credentials, and look for the credentials to your site, if they are there Modify and “Remove from vault” ( I suppose you could Edit them to the correct credentials but I just removed it and it did not prompt her).
She had the wrong credentials stored there. Im not sure why clearing the cache and passwords from the internet options didnt work but this did.
I had this problem with a user where the domain stored with the credentials could not be changed. This is the only item online I could find even close to my problem. The user saw "user-pcdomain\localusername" auto entered in the form. He tried to correct it with "workdomain\workusername" but got a message saying "Please enter a user name and password". Eventually we realized that his system was sending "user-pcdomain\workdomain" as his username. I've never seen a login misfire like that.
In his case he did not have his credentials stored but needed to add credentials - "workdomain\workusername" - for all of the domains he needed to access.
The point is - to expand on the answer - that IE or Windows 7 or both will store credentials incorrectly on rare occasions and the solution is be creative about adding\editing\remove credentials with Manage Your Credentials
I have saved the username and password in user authentication dialog. After some days it shows the dialog for username and password. I didn't clear the cache from SVN. I don't know why its throwing the dialog. any idea?
Check your Subversion configuration file (on Windows, it's in %APPDATA%\Subversion\config): http://svnbook.red-bean.com/en/1.7)/svn.advanced.confarea.html#svn.advanced.confarea.opts.servers
Set store-auth-creds on to cache user name and password.