Symantec Access Management

I am using basic password services, not APM.

I am testing a password policy, password expires after 5 days and users gets

warning in 4 days. I have forced the user to change their password by setting

'Disabled Flag attribute' to 16777216 . User was prompted to change password

, and the password change was successful. 2 days later, same user logged in

with their new password, then they get prompt saying their password expires

in 3 days , which is expected behavior. User changed their password again.

And Now comes  the problem. When the same user logs in after 2 days, I would

expect him to see the same warning that their password would expire in 3

days, that never happened. And even after 5 days, the password did not

expire. Is there something I am not doing right?

How do I capture these events in trace files? Can one share a specific trace config that captures in depth SM activity for PW services?

While i don't have a config for this, there is a thread if you search with an excel spread sheet, or should be. i think the title is "smlogging.xls"

this would have a breakdown of what everything does. while it was written as 12.50 was released, and probably needs an update, its the best consolidated logging document they have.

that should help you customize the profiler.

a quick search found the thread: https://communities.ca.com/message/101076393#101076393