The password management feature was spawned out of the necessity to decrease the pressure on the help desk to field phone calls for mundane, repeatable tasks that can easily be handled by the end users themselves as long as a password management feature covers all the requirements of extending password resets and the initial identity verification process to an IAM product. On the surface, password management is quite simple to define. It is the ability for end users and organizations to manage the passwords for all provisioned accounts within the organization, however in practice it is actually an essential security feature that must have a robust set of enforcement mechanisms to make sure passwords are not only easier to manage for an organization, but done so in a safe, secure and controlled manner. This includes resetting verifying the user’s identity before allowing them to change the password, enforcing strict password policies regarding entropy, password expiration, and secure mechanisms when the actual reset occurs. Fischer’s password management feature covers all of the features listed above.
Note to configure the feature, you will need access to the administration user interface. There are two locations you will access to configure password management:
The screenshot above shows you the location for configuring the majority of the functions and features available for password management. However there are also global configurations you can set to affect how the feature is used publicly. You can find the second set of configuration options in the global configuration area of the administration user interface (seen below):
You'll want to access the Configuration tab, the configuration function menu option and select "Identity Password Management" from the drop down list.