Environment
Novell Access Management 3 Linux Novell Identity Server
Novell Access Management 3 Linux Service Provider
SAML2 metadata exchanged between the two components
Provision unknown users parameter enabled - provisioning rule uses both Common First Name and Common Last Name as the required attributes, a 10 characters length user name formed from first character of Common First Name and 9 Characters from Common Last Name and auto generate password setting enabled.
Situation
Defined a provisioning policy stating that the password should be
generated automatically. When I authenticate to my Identity server,
a web page pops up asking the user to define a password for the new
account created in the service provider.
Resolution
This is a known issue with the FCS (release product) code and is
fixed in the IR1 patch (build 3.0.0-1413)
To work around it change the prompt to "Ask user for password" save and apply, then come back and change the radio back to "generate automatically" save and apply and you should see the results you are expecting.
To work around it change the prompt to "Ask user for password" save and apply, then come back and change the radio back to "generate automatically" save and apply and you should see the results you are expecting.