Password administration

Tasks for managing system-wide password settings include:

• Password resetting, including:
  • Hide generated passwords from the administrators who generate them
  • Show generated passwords to the administrators who generate them
• Enable editing and changing passwords
• Synchronize password changes for all of the individual accounts that are associated with a user
• Set passwords when the user is created
• Set an interval in which a user must retrieve a password before it expires
• A password strength rule
• Enable forgotten password authentication
• Exclude specific passwords

Password expiration settings are part of the login account settings. Depending on the adapters used in your site environment, we might optionally set reverse password synchronization. The synchronization originates from a master password store other than ISIM. A help desk assistant can also request IBM Security Identity Manager to generate a password. The password is sent in an email to the user. See User management.

1. Enable password resetting
   
2. Enable password editing and changing
   
3. Enable password synchronization
   
4. Set a password when a user is created
   
5. Set a password retrieval expiration
   
6. Set password notification
   
7. Create password strength rules
   
8. Enable forgotten password authentication
   
9. Exclude specific passwords
   
10. Passwords for system users