The following guide is designed to give administrators an overview of the following Password Reset App related topics:
- A brief synopsis of the Overview, Policies, and Reset History tabs
- Adding, editing, and deleting reset policies
You can use the following links below to quickly navigate to a specific section in this document. To quickly return to this index simply use the Return to Index link located at the end of any section.
This tab allows you to check the status of your Local Active Directory key if your district uses a Local AD integration. This includes which user generated the last key, as well as the date it was generated.
Please note that both of these files are necessary in establishing up a connection between the Password Reset Assistant and Microsoft AD. For instructions on creating this link please refer to the Connecting the Password Reset App with to Microsoft Active Directory help document.
This tab allows you to view, create, and manage the password reset policies for your site.
You can create a new password policy directly from this page by clicking on Add Policy on the top right of the page.
Additionally, you can also edit, copy, and delete a reset policy by using the options located on the right of any listed policies using the Edit and More options.
Reset History Tab
This tab allows you to review all password resets that have been initiated throughout your district.
Additionally, you can narrow down the password reset history using the filter options. These allow you to search by the user the reset was for, the status, or the user that performed the reset.
Adding a New Reset Policy
To add a new reset policy, begin by navigating to the Policies Tab. Once there, click on the Add Policy button on the right side of the page.
From here you will need to fill out the following policy data:
- Policy Name: The name of your password policy that will appear in the policies list.
- Reset token expiration (minutes): This is the time a reset token will last once generated.
- Minimum length: This field allows you to set a passwords minimum length.
- Must contain at least: This field allows you to set the types and counts of characters that are necessary for a password.
You will now be asked to include instructions for the specific password specifications you set forth by using the Password Complexity Instructions section.
- Supported Password Recovery Methods: The below options allow you to set how users can recover their passwords. You may have multiple selections, but you are required to at least check on option.
- Set New Password Directly: Selecting this option allows a user's password to be reset directly from their profile page.
- Recover Questions: Selecting this option allows users to set answers to recovery questions when resetting their password.
- Emailed Url: Selecting this option allows users to send out an email containing a password reset link.
- Text Message: Selecting this option allows users to send out a text to their stored phone number that contains a password reset link.
- Generate A Password Reset Code: Selecting this option allows agents to generate reset codes that users can use to reset their password from the recovery screen.
- Password Providers: These options allow you to set what system contains your primary user login data, as well as what system you want the password reset request to route to. Please note, the route to select field only appears when you have checked a system option and that you must specify a system to route requests to.
- Local (iiQ Only): Select this option if your district uses Incident IQ as the primary source of user login data.
- Azure AD: Select this option if your district uses Microsoft Azure as the primary source of user login data.
- Google: Select this option if your district uses Google as the primary source of user login data.
- Local AD: Select this option if your district uses a Local AD as the primary source of user login data.
- Rapid Identity: Select this option if your district uses Rapid Identity as the primary source of user login data.
The next section only appears if the Secret Questions password recovery method is selected.
- Number of questions that must be answered: This field allows you to set how many secret questions a user must choose to answer during a password reset. Please note, this number must be less than or equal to the number of password reset questions you create. This is a required field.
- Alert Methods: These options provide in system prompts to alert users when they need to set up their secret question answers.
- Dashboard Widget: This option will display a widget at the top of a user's page prompting them to set up their secret question answers.
- Popup message on login: This option will display a pop-up window when a user logs in prompting them to set up their secret question answers.
- Password reset questions: This button allows you to add a new secret question that users can choose from to answer. Please note, this number must be greater than or equal to the number of questions you require users to answer.
- Who can perform the password reset: This section allows you to determine what users can perform a password reset. You can narrow this down by location, user role, user policies, or even down to an individual user.
- Who can this be performed on: This section allows you to determine what users can have their passwords reset using this policy. You can narrow this down by location, user role, user policies, or even down to an individual user.
- Send password expiry emails: Sends out an automatic email to alert users when their passwords. If selected, you will need to specify how far in advance the alert will go out and how often.
- Specify what ticket issue type(s) password reset should be available for: Allows you to select what tickets you want a password reset widget to appear on based on the ticket's reported issue.
- Notify all followers on ticket of password change success/failure: Any follower on a ticket will be notified through email if the password reset succeeded or failed.