<strong>Business Case:</strong></div>

This application implements the &ldquo;Forgot Password&rdquo; functionality for Domino. This feature is available

today for almost any Web application which try to reset the password by sending notification to

registered mail address. However, if you forget your Domino Webmail/Notes Client password, then you

need to contact Administrators to reset the password.

If the Organization has set the policy to change the passwords after every 60/90 days, then the

password reset requests are more often. For a large Customer, we observed that around 60% Support

requests are meant for Password Reset for Notes Client/Web Mail.

This tools aims at minimizing such Support Calls by encouraging users to Register for Self Password

Reset application. Users need to do one time registration and set their secret questions and answers.

Once registered, users can use this application to Reset their Webmail/Notes Client passwords without

engaging the Support team.


<strong>Features of application:</strong></div>

 Reset password for both HTTP and Notes client (via ID Vault) in a single step.

 Front end application only consists of XPages design elements with total separation from data.

 No direct access to data via web interface/domino URL

 Secret answers secured with MD5 encryption.

 Forced authentication for Registering/editing the profile.

 Used single XPage for password reset wizard with efficient use of Dynamic content control.

Browser back button send use back to the start of wizard. Therefore, application having full control

of flow.

 Lockout of Accounts and preventing unauthorized attempt to reset password. If tried to answer

incorrectly more than 5 times. Lock-out is cleared automatically after defined interval via a

Scheduled agent.


Vikas Tiwari is the developer, Niklas Heidloff only committer.