Introduction
HelloID end users can reset their own passwords if you have enabled password self service. When an end user forgets their password, they may choose the Forgot your password option on the HelloID login page. Following a reset request, the user receives a token to complete the process. The standard method for token delivery is email, but this can be changed to SMS.
Note that this resets only their local HelloID account password, not their password in the directory system from which they are synchronized.
Configure Password Self Service
- Go to Security > Password > Self Service.
- Enter the following information:
Password Reset Enabled
Enables or disables password self service. When enabled, the "Forgot your password" link appears on the HelloID login page. This link may take a few minutes to appear or disappear after this setting is changed.
Token Valid Time (Minutes)
The number of minutes the user has to enter the received code before it expires.
Number of Tries
The number of times the user can enter an incorrect code before the token is invalidated. Should be set between 1 and 5.
Send Using Text (SMS)
Enable SMS for token delivery and use it as the default method. SMS tokens are sent to the number in the user's Phone Number field. If a user doesn't have a phone number, email is used as fallback. If a user has both a phone number and an email address, SMS is used. Users cannot choose their own token delivery method when logging in. HelloID determines the method based on these rules.
SMS Provider
Specify the SMS provider with which to send password self service text messages. Learn how to configure SMS providers here.
Token Length
The number of digits in the code sent to the user. Can be set between 1-100. - Select the Save button. Password self service is now enabled.