This is not the latest version of Identity Director documentation.
View available documentation.

Configure the Password Reset settings

The description below assumes that you have completed the instructions described in the topic 'Import the Building Blocks'.

  1. In the Management Portal, click Setup > Login Page Services > Password Reset.
  2. On the General tab:
    • Select Windows logon screen, Web Portal logon screen and Include captcha validation. Captcha validation provides additional security to validate users.
    • Optionally, in the Reset link text field, customize the text of the password reset link. The default text (Password Reset) is available in all supported languages on the Web Portal.
    • In the People identifier field, select Windows user account.
    • Click the browse button in the Service field.
    • In the Select Service pane, select the service Reset password based on user input and click OK.
    • Optionally, in the User instructions and Status page message fields, provide additional information for the user.
    • Optionally, in the Redirection URL field, specify a URL of choice after a password reset, rather than the default Identity Director sign-in page. In certain scenarios, for example when users access Identity Director from a thin client, redirecting them to the default page may not be user-friendly. By specifying a URL of choice, you can prevent scenarios like these.
      If you do not enable the Display the Finish button option, no redirection will occur.
    • In the Password input field, select Wizard to include a page for end user to provide input.
    • In the Password attribute field, specify the service attribute that can store the password that is provided by the user, in this case Password.
    • In the Password complexity hints area, configure a password complexity policy. This ensures that passwords provided by your users meet the complexity requirements of your organization. See also the example below.
      • Use the Regular expression field to configure the regular expression that determines the password complexity requirements. In the Web Portal, the provided password by the user will be validated according to this regular expression.
        • When you configure a regular expression, you can add flags to the pattern.
        • You can split complex rules in multiple rules, to make it easier to configure the desired policy.
        • Use the Test field to verify the regular expression. Green and red coloring indicate whether the text field is conform the configured regular expression.

          When you configure the password reset functionality, you can configure a password complexity policy, for example a password that matches the password complexity rules as determined by Microsoft Active Directory.

          You can split complex rules in multiple rules, to make it easier to configure the desired policy. For example:

          Regular expression

          Password complexity hint

          ^(?=.*[`~!@#$%^&*()_+{}|\][":;\'?><,./])

          Specify one special character

          ^(?=.{8,12}$)

          Specify 8 to 12 characters

          ^(?=.*\d)

          Specify one numeric digit

          ^(?=.*[a-z])

          Specify one lower case character

          ^(?=.*[A-Z])

          Specify one upper case character

          See also
      • Use the Password complexity hints field to provide users with information about the characteristics of the new password. In the Web Portal and Windows Client, if the provided password matches a regular expression, the related complexity hint will be marked.
  3. On the Verification Code tab, disable Verification code validation.
  4. On the Security Questions tab:
    • Select the number of questions that will be asked to the user. This is the maximum number of security questions the users will have to provide answers to. Normally, each user should define more questions and answers than the number specified here; if they do, each time they go through the password reset wizard, the questions they need to answer will be picked randomly. This increases security.
    • Optionally, configure the Attempts to answer before lockout and related settings. See the Identity Director Help for more information. (introduced in Identity Director 2020.1)
    • Optionally, Select organizational context to determine the users to whom the Security Questions apply.
  5. Save the changes.

You have now configured password resets via security questions.

Next