Configure user-defined forgotten password questions

We can enable and configure forgotten password settings to allow users to supply their own questions for challenge response authentication.

To enable and configure user-defined forgotten password settings...

  1. From the navigation tree, select Set System Security > Configure Forgotten Password Settings.

  2. On the Configure Forgotten Password Settings page, complete these steps:
    1. Select the Enable forgotten password authentication check box.
    2. Under the Login Behavior field, select one of the following login options:
      • Click Enforce password change and log in to system if we want users to change the password and log in to the system after they successfully answer the challenge response questions. Optionally type in a message the user receives if the user fails to enter the correct answers. Type an email address to which the message is sent.
      • Click Reset and e-mail password if you want the system to reset the password and email the password to the user after they successfully answer the challenge response questions. Optionally type in a message the user receives if the user fails to enter the correct answers. Type an email address to which the message is sent.
      • Click Email user a link to change password if we want the system to send an email to the user with the link to change the password. A user can click the link in an email that prompts the user to change the password.
        • This configuration option is effective only when a user initiates the forgot password flow through the Identity Service Center.
        • If a user initiates the forgot password flow through the Self-service user interface, the system prompts the user to change the password and then logs in the user to the system.

    3. In the Challenge Behavior field, click the radio button next to Users define their own questions.

    4. Enter in the number of questions the user must set up and answer correctly to successfully authenticate, and click OK.

  3. On the Success page, click Close.

Parent topic: Enabling forgotten password authentication