Best way to disable Password Reset and Password Change?

Go to solution
bpippert
Tera Guru

‎05-03-2017 11:08 AM

We recently upgraded from Helsinki to Istanbul. As a result, the following application was activated by default: https://docs.servicenow.com/bundle/istanbul-it-operations-management/page/administer/login/concept/c...

We have no need for this plugin, and would like all functionality regarding it to be disabled. We have no need for this since we use LDAP integration for passwords.   What is the most complete way to do that?   Do we have to disable the public pages, catalog items, processes, ui scripts, etc? Or, is there an easier global way to do this? If we have to manually disable things, does anyone know where a complete list might be?

0 Helpfuls
  • 5,182 Views
1 ACCEPTED SOLUTION

Go to solution
bpippert
Tera Guru
In response to april16

‎05-11-2017 02:59 PM

The answer I got from HI was this link:



https://{your instance}/sys_metadata_list.do?sysparm_query=sys_package%3D7b02eba4132232007df3bae32244b0e7%5EGROUPBYsys_class_name&sysparm_first_row=1&sysparm_view=



It is up to us, to decide what, of the 1223 application files, we should inactivate.



Since we were given no guidance from HI, we will probably just inactivate all the UI Actions, Public Pages, Application Menu, and Catalog Items.   We will also change the System Property - glide.security.forgot_password.display.link to false.


View solution in original post

11 REPLIES 11

Go to solution
Harsh Vardhan
Giga Patron

‎05-03-2017 11:27 AM

Hi Brad,



check the thread below. hope it will help you.



How to Disable Password Reset in application menu



Thanks,


Harshvardhan


0 Helpfuls

Go to solution
bpippert
Tera Guru
In response to Harsh Vardhan

‎05-03-2017 11:51 AM

I appreciate the link, but that doesn't really address the issue. This plugin added things to our Service Catalog. I realize I can just disable those items, but the items also point to public pages. So, someone with a bit of knowledge could still get to these public pages. It is things like this we are trying to disable. However, we don't know all that was installed. And, unfortunately, once a plugin is activated (as this was be default), there is no 'deactivate' option.


Go to solution
Harsh Vardhan
Giga Patron
In response to bpippert

‎05-03-2017 11:54 AM

Hi Brad,



That's true . once plugin has activated it can't be deactivate . i would suggest to contact with HI team.



HI Service Portal - ServiceNow



Thanks,


Harshvardhan


0 Helpfuls

Go to solution
bpippert
Tera Guru
In response to Harsh Vardhan

‎05-03-2017 11:59 AM

I have. I put the question here because on HI they estimate it takes 11 hours for the community to provide an answer, and 11 days for HI to provide it. I was hoping someone else in the community had already upgraded and figured out the best way to disable this functionality if it wasn't needed/wanted.


0 Helpfuls