• State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 36 subscribers
  • Views 3468 views
  • Users 0 members are here
Options
Related
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is Self-Service Site able to differenciate internal vs external access?

oscar.villasur.gradin
over 6 years ago

Hi experts,

We would like to change the way a user searches for his/her account on the self-service portal depending on whether he/she is accessing the portal from inside the company’s network or from the internet.

Is Password manager able to do so? If so, how?

Thanks in advanced.

  • 0 over 6 years ago
    Unfortunately this request may not be possible.

    The only way to perform the request out of the box is to use two management policies, however if the users are in both user scopes then the first one password Manager comes too will be enforced:
    support.oneidentity.com/.../which-management-policy-takes-precedence-144749-

    Custom development may be able to assist. If you would like an enahancement for consideration in a future release of the product please create a support case.
  • 0 over 6 years ago
    (in my opinion)
    #1. Use single PWM deployment and segregate users by PWM Policies01,02 via AD\group_PWM_Allow01_Internet and AD\group_PWM_Allow02_Intranet. Limitation: ad\jsmith might be today at home and another day at the office. Correlation between AD\groups and client IP is not straightforward!
    #2. Two separate deployments DMZ\PWM01, Intranet\PWM02 deployments with the same encryption Key. You need correlate amount of Security Questions and Answers (the same). This scenario sound ugly, not supported, and might contain other limitations.

    In both cases, I would recommend PSO to engage.