8-10 Oracle Fusion Middleware Users Guide for Oracle Identity Manager When a users identity needs to be validated without relying on the authentication scheme, the challenge questions are asked, and the user must provide the necessary number of correct answers. Oracle Identity Manager configuration properties for this feature are as follows: ■ PCQ.USE_DEF_QUES: If Oracle Identity Manager has been customized to allow end-users to create their own challenge questions, this property specifies whether users must select their challenge questions from a predefined list, or if users should create their own challenge questions. The default value is TRUE users must select their challenge questions from a predefined list. To require users to provide their own challenge questions, set the value to FALSE. ■ PCQ.NO_OF_QUES: Sets the number of challenge questions that must be completed by a user. The default value is 3. ■ PCQ.FORCE_SET_QUES: Determines if new users must set up challenge questions upon logging into the application for the first time, or if new users can skip this step and do it later. New users are redirected to the Self.jspx page where the user can select challenge questions. This page includes a Skip button so that users can skip the challenge question set up process. ■ PCQ.NO_OF_CORRECT_ANSWERS: Represents how many questions the user must answer correctly to reset user password. To set the challenge questions and responses:

1. Go to the My Profile page and click the Security tab.

2. In the Challenge Questions section, select questions from the Question 1, Question 2, and Question 3 fields. 3. In the corresponding Answer 1, Answer 2, and Answer 3 fields, select the answers.

4. Click Apply.

8.5.2.1 Localizing Challenge Questions and Responses

The following default challenge questions are localized automatically in Oracle Identity Manager: ■ What is the name of your pet? ■ What is the city of your birth? ■ What is your favorite color? ■ What is your mothers maiden name? Localized default challenge questions are located in the xlWebAdmin_LANG.properties file. Here, LANG is the locale code. Note: Functionality that allows end-users to create their own challenge questions is not supported in the standard, out-of-the-box user interface. Note: You can access the Admin.jspx page in another tab. This is the same page for setting challenge questions in the Oracle Identity Manager Administrative and User Console by performing the password validation. Managing Profile 8-11 If you add custom challenge questions to Oracle Identity Manager Design Console for lookup code Lookup.WebClient.Questions, add corresponding properties to the custom resource bundles to localize the question text in the supported languages. Corresponding translations should be saved to the following file: CustomResource_LANG.properties For example, you might add the new challenge question What is your favorite sport?. To localize this text, add properties to the property files in the following format: global.Lookup.WebClient.Questions.question-text=value Replace any white spaces in the question text with a hyphen -. For example, to localize the What is your favorite sport? challenge question in French, add the following property to the customResources_fr.properties file: global.Lookup.WebClient.Questions.What-is-your-favorite-sport?= Quel est votre sport favori? To modify the text of the default challenge questions, add corresponding properties to the custom resource bundles. For example, to modify the text of the What is your favorite color? question to use the British spelling colour instead of the American version color, add the following new property in the CustomResource_en.properties file: global.Lookup.WebClient.Questions.What-is-your-favorite-color?=W hat is your favourite colour? To modify the text of the default challenge questions for a specific locale, add properties for the modified questions to the customResources.properties file and the customResource_lang.properties file that represents the locales language. For example, the customResources_ja.properties file contains language property translations for Japanese.

8.6 Resetting Forgotten Password

If you have forgotten your Oracle Identity Manager password, you can reset it by entering your responses for a series of challenge questions. To reset your forgotten password: 1. In Oracle Identity Manager Administrative and User Console login page, click Forgot Password . The Enter Your User Login page of the Forgot Password wizard is displayed. 2. In the User Login field, enter your user login to allow Oracle Identity Manager to locate your user record. Then click Next. The Answer Challenge Questions page is displayed. 3. In this page, the wizard provides the challenge questions that you set during user registration to verify your user identity or edited by using the Self Service. This page also displays the applicable password policies. Enter your responses to the challenge questions, and then click Next. The Set a New Password page is displayed.

4. In this step, enter the new password that you want to set, and click Save. The

following are the possible outcomes of these steps: See Also: Chapter 7, Configuring and Using Self-Service Registration for information about registering to oracle Identity Manager