The Password Token Controller plugin is used to enable password management for administrators and the help desk in the Adminapp and the Admin REST API.
Configuration
- To enable the password management (Adminapp web UI and REST API), do the following:
- Go to:
Adminapp >> Users - Add the plugin Password Token Conroller to the list in property Authentication Tokens.
- In the plugin, connect the relevant Password Settings. In the Password Settings plugin, especially note the properties in group Password Management in Admintool.
- Configure the other properties as required. See below for selected features and refer to the documentation in the Config Editor.
- Make sure the access control settings for password management are set as required: Adminapp >> Access Control >> Password Management
Trigger password reset email
With the Password Token Controller, the helpdesk user may send an email to the end-user to set a new password (or start any other public self-service). If the feature is enabled, the button Send reset email (see screenshot above) is displayed.
- To use the feature:
- Go to:
Adminapp >> Users >> Authentication Tokens >> Password Token Controller - Configure a plugin in property Password Reset Self Service:
- For the Loginapp REST API and UI, use the Flow-Based Password Reset plugin in conjunction with a corresponding public self-service flow (flow continuation concept). See links below for more information.
- For the JSP-Loginapp use the Email Verification (Password Reset) plugin.