Enabling Wrapping for Third-Party Credential Providers

There may be situations where multiple credential providers are required to compliment each other to produce the required functionality on a single logon tile. In such cases, one credential provider wraps other credential providers. SailPoint Desktop Password Reset Credential Provider provides an option to wrap other credential provider for achieving similar effect subject to compatibility of other credential providers.

Note
If you need to display the Forgot Password link on the logon tile of any credential provider other than Microsoft’s default Password Provider, you must use this functionality. This assumes that the other credential provider supports the wrapping feature.

The following section describes the procedure for enabling a wrapper for third-party credentials with the Windows registry by adding the obtained WrapCPGuid string value to the Desktop Password Reset.

To find the global unique identifier (GUID) for the third-party credential provider, perform the following:

  1. From the command prompt, enter the regedit command to open the Windows registry.

  2. Locate the currently installed credential providers at the following location:

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers.

  3. Copy the GUID key for the credential provider that must be wrapped, including the curly brackets.

To enable wrapping for credential providers by adding the WrapCPGuid string value to the Config registry of Desktop Password Reset, perform the following:

  1. Go to the following Windows registry location:

    HKEY_LOCAL_MACHINE\SOFTWARE\SailPoint Technologies\Desktop Password Reset\Config

  2. Add a new string value: WrapCPGuid

  3. Enter values for the WrapCPGuid string value: <GUID Key>

    The <GUID Key> is the GUID key for the Credential Provider obtained earlier.

Note
The GUID Key for the Credential Provider must be enclosed with curly brackets. For example: {<GUID Key>}.

To distribute the updated configuration to remote systems, refer to Distribute Updated Configurations to Remote Systems.