Novell CLIENT LOGIN EXTENSION Administration Guide
Novell®
www.novell.com
Administration Guide
Client Login Extension
novdocx (en) 7 January 2010
AUTHORIZED DOCUMENTATION
3.7
Apri 20, 2010
Client Login Extension 3.7 User Guide
Legal Notices
Novell, Inc. makes no representations or warranties with respect to the contents or use of this documentation, and
specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose.
Further, Novell, Inc. reserves the right to revise this publication and to make changes to its content, at any time,
without obligation to notify any person or entity of such revisions or changes.
Further, Novell, Inc. makes no representations or warranties with respect to any software, and specifically disclaims
any express or implied warranties of merchantability or fitness for any particular purpose. Further, Novell, Inc.
reserves the right to make changes to any and all parts of Novell software, at any time, without any obligation to
notify any person or entity of such changes.
Any products or technical information provided under this Agreement may be subject to U.S. export controls and the
trade laws of other countries. You agree to comply with all export control regulations and to obtain any required
licenses or classification to export, re-export, or import deliverables. You agree not to export or re-export to entities
on the current U.S. export exclusion lists or to any embargoed or terrorist countries as specified in the U.S. export
laws. You agree to not use deliverables for prohibited nuclear, missile, or chemical biological weaponry end uses.
Please refer to the International Trade Services (http://www.novell.com/company/policies/trade_services) for more
information on exporting Novell software. Novell assumes no responsibility for your failure to obtain any necessary
export approvals.
novdocx (en) 7 January 2010
Copyright © 2008-2010 Novell, Inc. All rights reserved. No part of this publication may be reproduced, photocopied,
stored on a retrieval system, or transmitted without the express written consent of the publisher.
Novell, Inc. has intellectual property rights relating to technology embodied in the product that is described in this
document. In particular, and without limitation, these intellectual property rights may include one or more of the U.S.
patents listed on the Novell Legal Patents Web page (http://www.novell.com/company/legal/patents/) and one or
more additional patents or pending patent applications in the U.S. and in other countries.
Novell, Inc.
404 Wyman Street, Suite 500
Waltham, MA 02451
U.S.A.
www.novell.com
Online Documentation: To access the latest online documentation for this and other Novell products, see
the Novell Documentation Web page (http://www.novell.com/documentation).
Novell Trademarks
For Novell trademarks, see the Novell Trademark and Service Mark list (http://www.novell.com/company/legal/
trademarks/tmlist.html).
Third-Party Materials
All third-party trademarks are the property of their respective owners.
novdocx (en) 7 January 2010
novdocx (en) 7 January 2010
4 Client Login Extension 3.7 User Guide
Contents
About This Guide 7
1Overview 9
2 System Requirements 11
3 Preliminary Tasks 13
4 Installing Client Login Extension 15
5 Configuring the Client Login Extension MSI Files 19
5.1 Localizing Client Login Extension Files for Other Languages . . . . . . . . . . . . . . . . . . . . . . . . . 21
novdocx (en) 7 January 2010
6 Installing the Client Login Extension MSI File 23
6.1 Installing the Extension . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
6.1.1 Providing a Custom Gina Name . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
6.2 Using the Client Login Extension Installer Command Line Options . . . . . . . . . . . . . . . . . . . . . 25
7 Using the Forgotten Password Feature 27
7.1 Accessing Forgotten Password . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
7.2 Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
8 Uninstalling the Client Login Configuration Utility 31
8.1 Using Add or Remove Programs to Uninstall the Configuration Utility. . . . . . . . . . . . . . . . . . . 31
8.2 Using the Setup Wizard to Uninstall the Configuration Utility. . . . . . . . . . . . . . . . . . . . . . . . . . 31
Contents 5
novdocx (en) 7 January 2010
6 Client Login Extension 3.7 User Guide
About This Guide
novdocx (en) 7 January 2010
This guide contains information about using the Client Login Extension to provide password selfservice functionality in Novell
GINA. The guide is organized as follows:
Chapter 1, “Overview,” on page 9
Chapter 2, “System Requirements,” on page 11
Chapter 3, “Preliminary Tasks,” on page 13
Chapter 4, “Installing Client Login Extension,” on page 15
Chapter 5, “Configuring the Client Login Extension MSI Files,” on page 19
Chapter 6, “Installing the Client Login Extension MSI File,” on page 23
Chapter 7, “Using the Forgotten Password Feature,” on page 27
Audience
This guide is intended for administrators, consultants, and network engineers who require to
configure the password recovery help by using Client Login Extension.
Documentation Updates
For the most recent version of this document, see the Novell Documentation Web site (http://
www.novell.com/documentation/cle37/cle37_user_guide/data/bookinfo.html).
®
ClientTM, Novell SecureLogin 7.0 SP1, and Microsoft* Login
Additional Documentation
For additional documentation for Identity Manager, see the Identity Manager Documentation Web
site (http://www.novell.com/documentation/idm36/index.html).
Documentation Conventions
In Novell documentation, a greater-than symbol (>) is used to separate actions within a step and
items in a cross-reference path.
A trademark symbol (
trademark.
When a single pathname can be written with a backslash for some platforms or a forward slash for
other platforms, the pathname is presented with a backslash. Users of platforms that require a
forward slash, such as Linux* or UNIX*, should use forward slashes as required by your software.
®
, TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party
About This Guide 7
novdocx (en) 7 January 2010
8 Client Login Extension 3.7 User Guide
1
Overview
The Client Login Extension facilitates password self-service by adding a link to the Novell® and
Microsoft GINA login clients. When users click the Forgot Password link in their login client, the
Client Login Extension launches a restricted browser to access the Password Self-Service feature on
the login clients. This feature assists in reducing help desk calls from people who forget their
passwords.
novdocx (en) 7 January 2010
1
The password recovery support is available for graphical authentication interfaces such as GINA
and Credential Provider for LDAP clients, Novell Client
Windows 7 and Windows Vista operating systems support Credential Provider model of graphical
authentication interface.
NOTE: Among Windows Vista (64-bit) operating systems, Client Login Extension support is
available for Enterprise Editions only.
Clients in other operating systems support GINA model of graphical authentication interface.
NOTE: In the Active Directory environment, the password recovery support for Credential
Provider is available for all platforms except Windows 7 and Windows Vista.
The password recovery support through Client Login Extension tool is also available for locked
workstations and for workstations in which user operations are controlled by Desktop Automation
Services (DAS).
Configuring the Password Self-Service Feature
The Admin user runs the Configuration Utility of Client Login Extension and provides registry
entries for the MSI file. The registry entries for the MSI file include a welcome note, text to be
shown as a link, URL of the target server, and other required options. Entered values are displayed
as fields on the restricted password self-service browser. The user who forgot the password should
provide the required values in the self-service browser and retrieve the forgotten password.
TM
, and Microsoft clients. Clients in the
Running the Configuration Utility of Client Login Extension configures the Client Login Extension
MSI file, which you then install on client workstations running the Novell Client
SecureLogin 7.0 SP1, or the Microsoft GINA. The Client Login Extension works on Windows* XP,
Windows Vista, and Windows 2000 workstations.
The Client Login Extension MSI files come in a number of different languages. You must configure
the Client Login Extension file for each language, including English, before it can be used.
The Client Login Extension Configuration utility allows the system administrator to specify the
following configuration information for the Client Login Extension MSI file:
You can set the URL for password self-service.
For the Microsoft GINA client or Novell SecureLogin 7.0 SP1, you can include text (such as
“Forgotten Password”) for the link to the password self-services.
TM
software, Novell
Overview
9
NOTE: The Client Login Extension for Novell Identity Manager works with the native Microsoft
GINA, Novell SecureLogin 7.0 SP1, and the Novell Client 4.91 SP3 or later. It does not work with
any application that alters the Microsoft GINA, except the Novell Client 4.91 SP3 or later. The
Client Login Extension has been tested for use on licensed Novell Identity Manager 3.5 and later
systems.
The remaining sections in this guide step you through installing and using the Client Login
Extension Configuration utility to configure the Client Login Extension MSI files. Instructions for
using the Client Login Extension MSI files are also included.
novdocx (en) 7 January 2010
10 Client Login Extension 3.7 User Guide
Loading...