SAML SP - Sync Directory Password

SAML SP - Sync Directory Password

Login script to prompt for directory password

Since the user does not login into Unified Workspace with a password, we cannot capture the password to use in the @@password@@ variable.  If you would like to use the Active Directory password for other Unified Workspace features (File Services, Remote Desktop, Web Applications), you'll need to implement the following login script to prompt the user.  It will verify the password is correct with Active Directory and automatically prompt the user if the currently stored password is not valid anymore.

To enable this feature, follow the steps below:
1.    As the Unified Workspace Administrator, open the webAdmin tool
2.    Expand the CUSTOMIZATION-CENTER folder
3.    Select the profile you are using (e.g. SecureCloudAccess-Profile)
4.    Click on LOGIN SCRIPTS
5.    Enter the following into scripts
IF NOT syncedUserPasswordCorrect THEN
     executeURL( "/apps/selfService/updateSyncedUserPassword.jsp" )
END
6.    Click SAVE button
 
Value will be stored in the "SW-syncedUserPwd" lockbox value in Password Manager.  You can still use the @@password@@ variable to call this value.


Troubleshooting:
For troubleshooting issues, turn on the following Logging DEBUG on the Relay server(s). 
      com.stoneware.saml.sp

    • Related Articles

    • SAML SP - Office365

      General Setup Go to Azure AD (https://aad.portal.azure.com/) Click on "Enterprise applications" Click "New Application" Click "Non-gallery application" IMPORTANT - Office365 requires Azure AD and premium subscription, you may see an alternate screen ...
    • SAML SP - OneLogin

      General Setup Go to OneLogin administrator page (/admin) Click on "Apps" Click "Company Apps" Click "Add App" Search for "SAML" Select "SAML Test Connector (Advanced)" Recommended to add "LUW" into Display Name Click "SAVE" button Click ...
    • SAML SP - ADFS

      Pre-requisites Download the metadata file from https://YOUR-LUW-INSTALL/swSamlSp/metadata XML file Make sure ADFS has EnableIdpInitiatedSignonPage enabled MS article how to enable ...
    • User not able to change password in Unified Workspace

      How to enable Change Password debug, when having trouble with users not being able to change, or reset, their password in Unified Workspace. The Change Password debug needs to be enabled on the server that connects to your directory.  You may know ...
    • SAML Identity Provider options

      Problem:  Customer or 3rd party vendor needs to know configuration options for setting up Identity Provider (IDP) initiated SAML. Cause:  As opposed to Service Provider (SP) initiated SAML, Identity Provider (IDP) needs more information from vendor ...
    • Popular Articles

    • Old Browser Versions

      Question: I am using an older browser version and am having problems. What can be done ? We are not able to upgrade the browser at this time.   This is a challenge for any company that makes software that utilizes a browser. Since Stoneware does not ...
    • LCS Redirection

      Problem: How to redirect the LCS in an environment with multiple LCSs and students connecting to them. Solution(s): Create an allow.cfg on all LCS(s) (including the Master) in the network, however, even if no allow.cfg is present on an LCS, machines ...
    • Time windows allows for Service Shutdown

      Issue: Can the time windows gives a service to shut down before it kills the service be increased? Solution: Yes, the following information comes from the Microsoft URL : http://support.microsoft.com/kb/146092 To specify the wait time, do the ...
    • How to disable password saving - Internet Explorer

      Having multiple methods for saving a password in the browser can cause confusion for the user.   To disable password saving in Internet Explorer, launch Internet Explorer and perform the following steps. Click the blue Settings menu icon in the upper ...
    • How to disable password saving - Chrome

      Having multiple methods for saving a password in the browser can cause confusion for the user.  To disable password saving in Chrome, launch Chrome and perform the following steps. Click the Chrome menu button in the upper right corner of the Chrome ...
    • Recent Articles

    • Lenovo Unified Workspace 7.0.0.63 Released

      Highlights of Unified Workspace 7.0.0.63 Before you install: Please view the installation notes here. 7.0.0.63 Requires new 7.0 license file. Below is a list of enhancements and fixes for Unified Workspace 7.0.0.63 New Profile Style New Login ...
    • How to fix customized login and profile after upgrading to v7.0

      With the release of 7.0 the default login page has been modified to simplify the customization process.  If you are having an issue with the login page not displaying, after upgrading to v7.0, you will need to delete the custom CSS code and start ...
    • SAML SP - Sync Directory Password

      Login script to prompt for directory password Since the user does not login into Unified Workspace with a password, we cannot capture the password to use in the @@password@@ variable.  If you would like to use the Active Directory password for other ...
    • MySQL 8 SSL

      Issue Admin is making a database connection to a MySQL 8 database.  When clicking the Ping button on the DB Connection object, the following error is presented: WARN: Establishing SSL connection without server's identity verification is not ...
    • 7.0 excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file

      excludeProtocols - includeProtocols - allowCiphers - denyCiphers config file The following configuration is recommended for systems running 7.0.0.63, and higher. (For older 6.5 releases of UW, please see this article.) ...