Access Manager user provisioning password not generated automatically

  • 3212214
  • 19-Jan-2007
  • 26-Apr-2012


Novell Access Management 3 Linux Novell Identity Server
Novell Access Management 3 Linux Service Provider
SAML2 metadata exchanged between the two components
Provision unknown users parameter enabled - provisioning rule uses both Common First Name and Common Last Name as the required attributes, a 10 characters length user name formed from first character of Common First Name and 9 Characters from Common Last Name and auto generate password setting enabled.


Defined a provisioning policy stating that the password should be generated automatically. When I authenticate to my Identity server, a web page pops up asking the user to define a password for the new account created in the service provider.


This is a known issue with the FCS (release product) code and is fixed in the IR1 patch (build 3.0.0-1413)

To work around it change the prompt to "Ask user for password" save and apply, then come back and change the radio back to "generate automatically" save and apply and you should see the results you are expecting.