Link for change password contains internal IP address of POA UI server

Modified on: Thu, 23 Jan, 2020 at 1:40 PM

Business Automation Business Automation:7.0 Business Automation:7.3 Business Automation:7.x Operations Automation

Symptoms

When using the link to reset user's password a link with the internal IP address of the POA UI (User Interface) server is generated and sent to the customer, like in the example below:

http://192.168.40.7:8080/servlet/Turbine/action/pcp.RestorePasswordHandler/frm/single/?secret=lc2oufw1nyp29xm1pyg6xqt&login=johndoe

The customer who received the link cannot access it because the link contains internal IP address.

Cause

When the link for change password is generated, POA takes IP address from the current session of the user who generated the link. So, in the case above someone from POA Provider staff members generated link for the customer from within PA local network, using internal IP address of the POA UI server.

When the link for change password is generated not from PA local network, then IP address or hostname of the corresponding branded Control Panel server will be used.

Resolution

The customer has to generate the link using the publically available hostname of the branded Control Panel server.

Internal content

Did you find it helpful? Yes No