Login  
Hello there!

Need Help? We are right here!

Support Icon
miniOrange Email Support
success

Thanks for your Enquiry. Our team will soon reach out to you.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Contents

How to Manage Password History

  • Go to Policies > Password Policy, from the left navigation bar.
    • miniorange Identity Platform Admin Handbook: Password Policies

  • Under Password Settings section, set a value for Password history. The value for password history cannot be less than 0 or more than 10.
    • miniorange Identity Platform Admin Handbook: Password Settings

  • This value indicates that the last 'n' passwords, cannot be same as the new password you will set for customer admin or its end users while changing or resetting password.
  • e.g. :
    • If the password history is set to 3 for a customer admin, when an end user's password is changed (e.g., to "Password1"), this is stored in their password history.
    • When the password is changed for the first time after enabling password history, it must follow the password policy and cannot be the same as the current password. For example, the new password could be "Password2."
    • On the second password change, the new password cannot be "Password1" or "Password2," as they are the last two passwords used. The new password must be different and follow the password policy, such as "Password3."
    • For the third password change, the new password cannot be "Password1," "Password2," or "Password3," as they are the last three passwords used. The new password must be different and meet the password policy requirements, for example, "Password4."
    • On the fourth change, the new password cannot be "Password2," "Password3," or "Password4." However, "Password1" can be reused since it is no longer among the last three passwords used.
  • Lock-Out Settings:

    Locked Account Options : This section manages account lockout behavior by setting login attempt limits and enabling email or password reset options for locked accounts.

    • Send Email to User: When enabled, users receive an email notification if their account gets locked due to exceeding login attempts.
    • Enable Account Using Forgot Password Option: Allows users to unlock their account via the "Forgot Password" link after being locked out.

  • Maximum Login Attempts: This is the number of unsuccessful login attempts allowed to user before disabling the user.
  • Disable User Login Time Period: The disabled user will be allowed to attempt login again to IdP or his configured applications after this time period.

    • miniorange Identity Platform Admin Handbook: Lock-Out Settings and Enduser Password Settings

  • Enduser password Settings: Enforce a password change after an admin reset using the Enduser Password toggle.
  • click on Save Settings button to save the configurations.