Hello, I am wondering where and how the Password Reset challenge answers are stored. We want to begin using challenge questions for password reset in our environmentand wondering if itwould bepossible to migrate existing data into the ILM 2 environment when it is released.

The Questions are stored in the workflow object's XOML attribute. The answers are encrypted and stored in a Gate Registration Object. (1 GRO per workflow per person -- or 1 GRO is created to hold the answers as a user registers for a particular QA AuthN workflow).How to migrate the data is big question and one that the Product Group will have to answer.David Lundell www.ilmBestPractices.com

Thank you for your quick reply. That is helpful. I was digging through the tables to see if could find anything (well, hoping it would be that easy).

I'm afraid it is not that easy. We don't store the actual answers, only a hashed representation of the answer. There is no documented way to prepopulate the answers for the Q&A gate./AndreasThis posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/copyright.htm

Andreas,Thanks for correcting my error about the hashing versus encryption. You stated there is no documented way to prepopulate the answers in the QA gates, but what about the question Dawn asked: Migration? I think Dawn is asking if there will be to implement with RC0, RC1 or someother build, have users register and not have to re-register when FIM is RTM'd. I presume that an upgrade path will exist from RC 1 to RTM and the hashed answers will come along and be valid.David Lundell www.ilmBestPractices.com

We will support in-place upgrade from RC1 to RTM and maintain the answers./AndreasThis posting is provided "AS IS" with no warranties, and confers no rights. Use of included script samples are subject to the terms specified at http://www.microsoft.com/info/copyright.htm