Enabling password synchronization

Password synchronization is the process of assigning and maintaining one password for all individual accounts that a user owns. Password synchronization reduces the number of passwords that a user must remember. Password synchronization does not affect sponsored accounts.

You must be a system administrator on the to enable password synchronization.

We can configure the system to automatically synchronize passwords for all individual accounts that are owned by a user. Then, the user must remember only one password. For example, a user might have two individual accounts: a IBM Security Identity Manager account and a Lotus Notes account. If the user changes or resets the password for the ISIM account, the Lotus Notes password is automatically changed to the same password as the ISIM password. When password synchronization is enabled, Security Identity Manager does the ACI evaluation for changing password on the person entity. (Before Tivoli Identity Manager version 5.0, the ACI evaluation was done on the account entity.) If the person ACI grants the user the change password operation, the user can change the password for all associated individual accounts. For sponsored accounts or if password synchronization is not enabled, the ACI evaluation is done against the account entity instead.

If password synchronization is enabled, users cannot specify different passwords for their individual accounts. Password synchronization does not affect sponsored accounts. A user can specify different passwords for sponsored accounts. When password synchronization is initially enabled, individual accounts of users are not automatically synchronized immediately. Accounts are synchronized when users change passwords or create an account.

To enable password synchronization...


Procedure

  1. From the navigation tree, select...

  2. Select the Enable password synchronization check box, and click OK.

  3. On the Success page, click Close.

We can change and synchronize the passwords for the individual accounts that are associated with a user.

Parent topic: Password administration