Implement a new page (JSF) under Administration -> Manage Users to create new user.
disabled by default
Assumption: at least 1 admin user already in the system
1) Admin login -> create the new user
2) No password requested. System will generate a random password
3) System will email the new user with the account activation link (try out with query param on existing account activation url)
4) User will click on the link
5) System will activate the account, and redirect user to password reset page
Registration page will be locked when the anonymous read option is disabled.