Business rules installed with password reset

The business rules for the password reset process ensure security and proper operation.

Table 1. Business rules for password reset
Business rule Table Description
Verify Account Lookup Script Password Reset Credential Store

[pwd_cred_store]

Checks if the account lookup script has the correctly named function.
Prevent against deletion Password Reset Credential Store

[pwd_cred_store]

Checks if the credential store is part of an active process before allowing deletion.
Send SMS code Password Reset Device Enrollment Code

[pwd_dvc_enrollment_code]

Sends an enrollment code to a device.
Prevent against deletion Password Reset Identification Type

[pwd_identification_type]

Prevents an identification type from being deleted if it is part of an active process.
Single credential store per process Password Reset Process Credential Store

[pwd_map_proc_to_cred_store]

Prevents having more than one credential store per process.
Deactivate process with no group Password Reset Process User Group

[pwd_map_proc_to_group]

Deactivates the process if it does not apply to all users or if the groups associated with it are removed.
Check unique verifications Password Reset Process Verification

[pwd_map_proc_to_verification]

Prevents a verification from being assigned multiple times to a specific password reset process.
Deactivate process with no verification Password Reset Process Verification

[pwd_map_proc_to_verification]

Deactivates the process if the verifications associated with it are removed.
Password Reset Validate Auto-generate Password Reset Process

[pwd_process]

Checks that either Email password or Display password is selected when the Auto-generate password check box is selected.
Validate Process Password Reset Process

[pwd_process]

Verifies that a password reset process is configured correctly.
Update proc_to_cred_store Password Reset Process

[pwd_process]

Enforces a one-to-one relation between a password reset process and a credential store.
Set new record flag Password Reset Process

[pwd_process]

Sets a new record flag for the client to take appropriate action.
Validate Security Question Password Reset Question

[pwd_question]

Validates rules for security questions such as no duplicates or empty questions.
Password Reset Activity Monitor Password Reset User Lockout

[pwd_user_lockout]

Creates an event when the number of users locked out of password reset during a specific interval exceeds the threshold value.
Add default parameters QA verification Password Reset Verification

[pwd_verification]

Generates parameters for Security Question verifications if none are specified.
Add params personal confirm verification Password Reset Verification

[pwd_verification]

Generates parameters for personal data confirmation verifications if none are specified.
Add params personal verification Password Reset Verification

[pwd_verification]

Generates parameters for personal data verification if none are specified.
Prevent against deletion Password Reset Verification

[pwd_verification]

Prevents a verification from being deleted if it is part of an active process.
Add default parameters SMS verification Password Reset Verification

[pwd_verification]

Generates parameters for SMS code verifications if none are specified.
Parameter Names Cannot Be Updated Password Reset Verification Param

[pwd_verification_param]

Prevents parameter name changes.
Personal Data Param Validation Password Reset Verification Param

[pwd_verification_param]

Checks that a column exists in the sys_user table for the parameter used in a personal data verification.
Security Questions Param Validation Password Reset Verification Param

[pwd_verification_param]

Checks for valid parameters in security question verifications.
Personal Data Confirm Param Validation Password Reset Verification Param

[pwd_verification_param]

Checks that a column exists in the sys_user table for the parameter used in a personal data confirmation verification.
SMS Code Param Validation Password Reset Verification Param

[pwd_verification_param]

Checks for valid parameters in SMS code verifications.
VerifyAutoEnroll Password Reset Verification Type

[pwd_verification_type]

Checks if auto-enroll is selected and ensures that an enrollment check script is provided.