[MGNLUI-3501] Add possibility to force users to change passwords periodically Created: 22/Jul/15  Updated: 22/Apr/22

Status: Selected
Project: Magnolia UI
Component/s: security app
Affects Version/s: 6.2
Fix Version/s: None

Type: New Feature Priority: Neutral
Reporter: Christian Ringele Assignee: Unassigned
Resolution: Unresolved Votes: 3
Labels: pm, support
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Relates
dependency
depends upon MAGNOLIA-6980 Security Password Policies: Standard ... Open
relation
Template:
Acceptance criteria:
Empty
Date of First Response:
Visible to:
Joseph Kamwena

 Description   

A customer in support asked this:
"Is it possible to force used to change periodically their passwords? for example all 30 days"

I think this is a interesting requirement from which many projects could benefit.

What also would make sense is:
"Manually invalidate a users password and force him to set a new one."
So not periodically, just once where it needs to be ensured that a new password is set by the user once.



 Comments   
Comment by Philipp Bärfuss [ 16/Nov/15 ]

Definitely a valid request. Still in the most of this cases we recommend using an external authentication such as LDAP or ActiveDirectory. They support all these features and users don’t need to maintain extra credentials.

Comment by Philipp Bärfuss [ 15/Mar/16 ]

In this context I also got the request that the user should be forced to change his password at the first login. For instance if a initial password was set by an administrator.

Generated at Mon Feb 12 09:07:15 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.