Users are allowed to change their passwords once their
password expires, which is determined by the password policy configuration.
About this task
To change the
password:
Procedure
- An API, changePassword is provided to change the actual
password:
<User UserKey="" Loginid="" >
<ResetPassword RequestId="" ResetType=""/>
</User>
The attribute RequestId is a randomly
generated string that stores the password reset request ID, which
is passed to the changePassword API to authenticate the request.
- A combination of RequestId and ResetType is used for request
validation, and on successful validation, user password is changed.