CA IDM is currently used for self service and password policies are set to validate last 7 passwords.
IDM will be decommissioned. However, password history stored in user store to be validated upon self service password reset from applications.
Requirement is to de crypt password history (UserStore is ODSEE) by directly searching this field on Directory. With no IDM we cannot use TEWS call to validate. So, we have to rely on JNDI custom code and validate this history field against new password user would enter.
My question is how do we decrypt Password History field in userstore to validate that new password is not one amongst existing values in it?
Appreciate any pointers!