Skip to main content

Configuring password expiration

Password expiration configuration includes setting up the required system properties and configuring the message templates for email notifications. By default, passwords in Jive communities do not expire. Enabling this feature allows you to enforce password updates for your community.

Fastpath

Admin Console: System > Settings > Password Control

Fastpath

Admin Console: System > Setting > Message Templates

For more information about the password expiration feature and settings, see Password expiration.

To enable and configure password expiration

  1. In the Admin Console, go to System > Settings > Password Control.

  2. To enable password expiration, under Password Expiration, select Enabled.

  3. In Expiration days, specify the number of days after which passwords must be changed. By default, the maximum password lifetime is 60 days.

    Possible values are zero and natural numbers.

  4. In Min life days, specify the number of days during which the password update is prohibited. By default, this is set to 1 day.

    Possible values are zero and natural numbers.

  5. In Expiring notification days, specify the number of days before the password expiration date when the first notification must be sent. By default, this is set to 7 days.

    Possible values are zero and natural numbers. Notifications are sent every day after the configured date until the password is updated or expires.

  6. Click Save.

With these settings configured, the password expiration policy is enforced for your community.

To configure email templates

To configure email templates for the notifications:

  1. In the Admin Console, go to System > Setting > Message Templates.
  2. Configure the Password Expiration, Password Expired, and Password Reset templates as required. The Password Expiration template is used to inform users about the upcoming expiration, while the Password Expired template notifies them if their password has already expired.

For more information about templates and their configuration, see Editing email notification templates.

User Experience with Password Expiration

Notifications about password expiration are sent to the user Inbox and on the email depending on the user preferences setup. Each notification contains instructions for updating the password.

After the password expires, the user will not be able to log in without updating the password. An appropriate message is displayed on the login page, and a notification regarding the expired password will also be sent to the user's email.

If a user attempts to update their password within the minimum life period, they will receive a notification indicating that the password cannot be changed yet.

Logging password expiration

Password expirations are not explicitly logged. However, a password expiration revokes all user sessions, and such events are logged. For example:

2019-01-02 11:08:37,956/PST - [INFO] - ALL SESSIONS REVOKED for User: 'user@test.com' - [SYSTEM] -
Related

Configuring password settings