Secure > Enhance site security
Enable password invalidation
Password invalidation, when enabled, requires WebSphere Commerce users to change their password if the user's password has expired. In this case, the user is redirected to a page where they are required to change their password. Users are not able to access any secure pages on the site until they have changed their password.
Procedure
- To use the password invalidation security feature, define the ChangePassword view for the store as described in Password invalidation.
- Open the Configuration Manager.
- Traverse to the Password Invalidation node for the instance... WebSphere Commerce > node_name > Commerce > Instance List > instance > Instance Properties > Password Invalidation
- To activate the password invalidation feature, click the Enable check box.
- To apply the changes to Configuration Manager, click Apply. Upon successfully updating the configuration for the instance, we will receive a message indicating a successful update.
- Restart the WCS instance.
- Views for password invalidation
To use the password invalidation security feature, define the ChangePassword view for the store.