About resetting passwords
Passwords can be reset following password expiry, login
failure due to invalid login attempts or in the case of a forgotten
password. The password can be reset only if the password policy of
a user allows it.
Configuring secret questions
A secret question and answer pair can be used for effective
user authentication. Each secret question is configured and set at
the organization level. Application access is denied to users in case
of repeated incorrect answers. Custom questions pertaining to a user
can also be configured.
Resetting passwords through e-mail
Use the rule type=password reset and the associated IPasswordPolicyForReset
interface to reset passwords.
Changing user passwords
Users are allowed to change their passwords once their
password expires, which is determined by the password policy configuration.
Resetting passwords through other protocols
You can reset passwords by configuring other protocols
such as SMS. You must configure a new password policy to allow password
reset through the new protocol.