Certificate Info in Web Access password bug?

I have DWA users who have their id file stored in their mail file. Some of these users have had their organizational unit changed via a name change. Later on they may get their own pc and at that time the notes client gets installed. Problem is that if they changed their password, and the id file is stored in their mail file, I may not have a current version of the id file (and I do have a password recovery db set up). But if I have the user log in via DWA, then go into the preferences, security tab, anc click on Certificate Info, the password prompt comes up but entry of the same password used to log into DWA is not accepted. There is no message but the prompt keeps reappearing. So now there is no way to review the certificate info, nor is there anyway to export the id file from the mail file.

Am I missing something here?

Subject: Those are prompts for two separate passwords

The initial login prompt that the DWA user receives is for authentication to the Domino web server; the subsequent prompt received when performing secure mail operations is a prompt for the password needed to decrypt the copy of the ID file stored in the mail file.

If you were on 8.5.1+, you could set up a Notes ID vault and synchronize the ID files (and ID file passwords) used by DWA, Traveler, and BES with the ID files in the vault and on the Notes clients. However, that won’t help you recover the password for an ID file after the fact – if you don’t have a recovery mechanism in place before the password has been forgotten, it’s too late.