Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

During a normal authentication process you will get 2 session cookies.  The first when you make an unauthenticated request, and then a second when you are authenticated.  A new session cookie is always going to be issues when you move from unauthenticated to authenticated.

 

Anyway, I would suggest that you raise a support ticket and get the support team to take a look.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

During a normal authentication process you will get 2 session cookies.  The first when you make an unauthenticated request, and then a second when you are authenticated.  A new session cookie is always going to be issues when you move from unauthenticated to authenticated.

 

Anyway, I would suggest that you raise a support ticket and get the support team to take a look.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

Hi Scott,

Need some more help. When I spoke to IBM support people, they mentioned that the Management Page, "/pkmspasswd" do not override the initial url kept/maintained in the session, where as application url can override previous url requested. Please go through the sequence of the following examples, and help me to understand what can be the issue. Thanking you! 

When I update the application url of an un-authenticated session ( in the following sequence ), the latest url is called after successful authentication and the application got launched.

https://ReverseProxy/pkmspasswd

https://ReverseProxy/portal



When I update the application url of an un-authenticated session ( in the following sequence ), the very first url of the applicaiton is called after the successful authentication. When I spoke to IBM Support they said that /pkmspasswd is a management page, which cannot override the initial URL saved against the session.

https://ReverseProxy/portal

https://ReverseProxy/pkmspasswd

Thanks and Regards,
Jegadeesh K

During a normal authentication process you will get 2 session cookies.  The first when you make an unauthenticated request, and then a second when you are authenticated.  A new session cookie is always going to be issues when you move from unauthenticated to authenticated.

 

Anyway, I would suggest that you raise a support ticket and get the support team to take a look.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

Please send me the support ticket number as I would like to view the conversation which took place with the support team.

 

Thanks.

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

1 Corporate Court Bundall, QLD 4217 Australia

 

 

Hi Scott,

Need some more help. When I spoke to IBM support people, they mentioned that the Management Page, "/pkmspasswd" do not override the initial url kept/maintained in the session, where as application url can override previous url requested. Please go through the sequence of the following examples, and help me to understand what can be the issue. Thanking you! 

When I update the application url of an un-authenticated session ( in the following sequence ), the latest url is called after successful authentication and the application got launched.

https://ReverseProxy/pkmspasswd

https://ReverseProxy/portal



When I update the application url of an un-authenticated session ( in the following sequence ), the very first url of the applicaiton is called after the successful authentication. When I spoke to IBM Support they said that /pkmspasswd is a management page, which cannot override the initial URL saved against the session.

https://ReverseProxy/portal

https://ReverseProxy/pkmspasswd

Thanks and Regards,
Jegadeesh K

During a normal authentication process you will get 2 session cookies.  The first when you make an unauthenticated request, and then a second when you are authenticated.  A new session cookie is always going to be issues when you move from unauthenticated to authenticated.

 

Anyway, I would suggest that you raise a support ticket and get the support team to take a look.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K

Please send me the support ticket number as I would like to view the conversation which took place with the support team.

 

Thanks.

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

1 Corporate Court Bundall, QLD 4217 Australia

 

 

Hi Scott,

Need some more help. When I spoke to IBM support people, they mentioned that the Management Page, "/pkmspasswd" do not override the initial url kept/maintained in the session, where as application url can override previous url requested. Please go through the sequence of the following examples, and help me to understand what can be the issue. Thanking you! 

When I update the application url of an un-authenticated session ( in the following sequence ), the latest url is called after successful authentication and the application got launched.

https://ReverseProxy/pkmspasswd

https://ReverseProxy/portal



When I update the application url of an un-authenticated session ( in the following sequence ), the very first url of the applicaiton is called after the successful authentication. When I spoke to IBM Support they said that /pkmspasswd is a management page, which cannot override the initial URL saved against the session.

https://ReverseProxy/portal

https://ReverseProxy/pkmspasswd

Thanks and Regards,
Jegadeesh K

During a normal authentication process you will get 2 session cookies.  The first when you make an unauthenticated request, and then a second when you are authenticated.  A new session cookie is always going to be issues when you move from unauthenticated to authenticated.

 

Anyway, I would suggest that you raise a support ticket and get the support team to take a look.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

---------

And the Actual flow I follow earlier is as follows. 

1) I go to the application url https://<>:<> , and "PD-S-SESSION-ID" cookie is created. 

2) User clicks on the "Change your existing password", xmlhttprequest ( /GET, /pkmspasswd ) called. ( in the request PD-S-SESSION-ID is sent and the same sent as part of the response to maintain cookie ) 

3) User provides user name and password, session authenticated and user able to  change password. 

And now it is not happening, and the user is authenticated and user is able to access the application. 

Is it possible for ibm webseal to issue a new PD-S-SESSION-ID, when /pkmspasswd is called ? ( We cleared the session cookie PD-S-SESSION-ID from browser memory, then we clicked on the "Change your existing password" which received new PD-S-SESSION-ID cookie. Once user provides correct user name and password, password change prompt, then it will be redirected to /pkmspasswd.form and with the same message mentioined above.  )

Thanks and Regard,
Jegadeesh K

Jegadeesh,

 

My understanding of your issue is that you are trying to access '/pkmspasswd' while unauthenticated to change a users password.  When this happens the user should first be prompted to authenticate, and then they are allowed to change their password.  Are you able to please confirm that my understanding is correct.

 

Assuming that my understanding is correct, I tried this using the latest WebSEAL (I don't currently have a v9 environment available) and everything works as expected, i.e.

1. I accessed https://<webseal>/pkmspasswd;
2. WebSEAL returned the login form;
3. I provided my username/password;
4. WebSEAL returned the password form;
5. I entered the new password information;
6. WebSEAL changes the password and I now have an authenticated session.

If WebSEAL is not behaving in this manner I would suggest that you raise a support ticket so that the support team can investigate the issue.

 

Thanks.

 

 

 

Scott A. Exton
Senior Software Engineer
Chief Programmer - IBM Security Verify Access
IBM Master Inventor

Phone: 61-7-5552-4008 E-mail: scotte@au1.ibm.com	1 Corporate Court Bundall, QLD 4217 Australia

Hi All,

One of my application use ISAM webseal for authentication, where in login page we have a hyper link which is for change password. 

Login flow:
User fill isam user id and password and clicks on login ( Form submit to "/pkmslogin.form with credentials ) , the application will get loaded. 

Change password:
* user will be clicking on the "Change password button", which maks http get call using XHR, to /pkmspassword
* message will be displayed to login with user name and password. 
*When user enters id and password, click login, it will redirect to the /pkmspasswd page. 

Issue : 
After migrating to ISAM 9.x, the change password flow got broken and could not able to reset password. 

What we tried
---------------

After loading the page, we were clearing cookie in the session ( HTTP ONLY & Secure ), and clicking on the change password, later login using "user id" and password. This time, it is going to the /pkmspasswd page. 

Kindly please help me to understand the issue and do the needful. Thanking you! 


Thanks and Regards,
Jegadeesh K