PingAM 8.0.0

User self-service

User self-service lets end users self-register on your website, securely reset forgotten passwords and retrieve their usernames.

AM’s user self-service capabilities greatly reduce help desk costs and provide a rich online experience that strengthens customer loyalty.

Features
User self-registration

Lets non-authenticated users register on your site. You can add security features like email verification, knowledge-based authentication (KBA) security questions, Google reCAPTCHA, and custom plugins to augment the self-registration process.

Knowledge-based authentication security questions

When enabled, AM requests answers to pre-configured or custom security questions during the registration process. During the forgotten password or forgotten username process, end users are presented with the security questions, and must answer them correctly to continue the process.

Security questions are presented to the end user in a random order during forgotten password and forgotten username flows.
Forgotten password reset

Lets registered users reset their passwords. The default password policy is set in the underlying directory server and requires a minimum password length of eight characters by default. If security questions are enabled, users must also correctly answer their pre-configured security questions before resetting their passwords.

Forgotten username support

Lets users retrieve their forgotten usernames. If security questions are enabled, users must also correctly answer their pre-configured security questions before retrieving their usernames.

Google reCAPTCHA plugin

Supports the ability to add a Google reCAPTCHA plugin to the registration page. This plugin protects against software bots that can be used against your site.

Configurable plugins

Supports the ability to add plugins to customize the user services process flow. You can develop your custom code and drop the .jar file into your container.

Customizable confirmation emails

Supports the ability to customize or localize confirmation emails in plain text or HTML.

The OTP Email Sender node supports plain text notifications only. You can’t include HTML-rich notifications that use information from shared or transient state. If you need to support HTML notifications, use a Groovy script with a private HTTP client that makes the REST API calls and place the output in a Scripted Decision node.
Password policy configuration

Password policy is enforced by the underlying DS server and manually aligned with frontend UI templates. The default password policy requires a password with a minimum length of eight characters.

Self-registration user attribute allowlist

Attribute allowlisting lets you specify which attributes can be set by the user during account creation.

User self-registration supports a number of different user flows, depending on the security options you configure. For example, email verification, security questions, Google reCAPTCHA, and custom plugins.

Forgotten username retrieval and forgotten password reset also support various user flows, depending on your configured security options.