Environment
Secure Password Administrator 1.0
Situation
Do I have the ability to select the email notification option on password changes based on how the user accessed the Secure Password Administrator site?
How do I stop email notifications for password changes if the user accessed the Secure Password Administrator site using a known, valid password?
How do I stop email notifications for password changes if the user accessed the Secure Password Administrator site using a known, valid password?
Resolution
When you configure Secure Password Administrator (SPA) to generate email notifications when password changes are made, there is currently not an option to distinguish between password changes made after a user logs in with a known, valid password or by using the identity questions (which would indicate that the user had forgotten their current password).
The SPA self-service site allows users to change passwords using the site even if they have not forgotten their current password. Email notifications, if configured, will occur when a user changes a password using SPA regardless of how they logged in to the site.
An enhancement request has been filed to allow SPA administrators to enable or disable email notifications for password changes based on how the user logged in to the site.Additional Information
Formerly known as NETIQKB56532