...
import | https://docs.empowerid.com/docs.css |
---|
To add an extra layer of protection to your site to help prevent potential anonymous password resets and account requests from being initiated from
...
automated software, your organization can register for a free Google reCAPTCHA account. Once you have an account, you can integrate it with EmpowerID as an OAuth Provider application. To do so, edit the default Google reCAPTCHA OAuth provider in EmpowerID, adding the Site Key and Secret Key associated with your reCAPTCHA account.
Page Properties | ||
---|---|---|
| ||
captcha |
To get reCAPTCHA and learn more about setting it up for your domain, visit https://www.google.com/recaptcha/intro/.
Note |
---|
If you use a proxy on your EmpowerID servers or desktops, you must allow the following sites to be opened over the proxy.
|
Warning |
---|
If you view a page that requires reCAPTCHA prior to configuration and you get a misconfiguration message, clear the browser cache before accessing the page again. After configuration, reset IIS. |
Integrate Google reCaptcha
- In the Navigation Sidebar of the EmpowerID Web application, expand Admin, then SSO
On the navbar, expand Single Sign-On > SSO Connections, and
clickselect OAuth / OPenID Connect.
On the
OAuth ServiceExternal OAuth Provider tab, search for Google reCAPTCHA and click the Provider link.
Service
This opens the External OAuthProvider Details
page for Google reCAPTCHA. From for reCaptcha. You use this view to add your provider details.
In the grid, click the Edit button for the Google reCAPTCHA provider.
In the General dialog that appears, do the following:
Enter the Site key
for your Google reCAPTCHA account in the Consumer Key field.
Enter the Secret key
for your Google reCAPTCHA account in the Consumer Secret field.
Click Save.
- From the Start menu, run iisreset.exe.
Now, when a user clicks the Forgot Password link, the Password Reset Center appears with a Google reCAPTCHA validation, as in the image below.
...
Recycle the EmpowerID app pools to have your changes take immediate effect.
Disable Google reCAPTCHA without removing your keys
- From
On the
navigation barnavbar, expand
ResourcesObject Administration and select Workflows.
On the Workflow tab,
enter the search term "passwordreset" and in the search results, select Password Reset Center.search for PasswordResetCenterMFA and and click the Display Name link for the workflow.
On the Workflow Details
pagefor the workflow that appears, expand the Request Workflow Parameters
sectionaccordion and search for
"useUseCaptcha.
"In the search results, click the Edit button for the UseCaptcha parameter, which is set to true by default.
Change the Value of the parameter from true to false
. DoWarning and click Save. Do NOT change the Name field, as EmpowerID uses this to determine which parameter to change. If you change the Name field, the parameter is ignored.
- From the command line, run iisreset.exe to update your site. To test the change, in your browser, replace anything in the site URL from the pound sign (#) to this: #aw/passwordresetcenter
For example, https://sso.empowersso.com/UI/#aw/passwordresetcenter
Or log out and on the Login page, next to Forgot your: click Password. The password reset center no longer shows the reCAPTCHA section.
...
Recycle the EmpowerID app pools to have your changes take immediate effect.
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|