Enabling password expiration

We can configure password settings to force users to regularly change their IBM Security Identity Manager passwords within a specified time period.

If we configured IBM Security Identity Manager to use the default custom registry, we can enable password expiration. If we configured IBM Security Identity Manager to use an external user registry for authentication, we cannot enable password expiration.

Users who are forced to change their password because of an expired password period are taken to the Expired Password page immediately after login. The user cannot access any features in the system until the password is changed.

To enable password expiration...

1. From the navigation tree, select Set System Security > Set Security Properties.

2. In the Identity account password expiration period in days field, type a time period, and then click OK. The default value of 0 indicates that the account password never expires.

3. On the Success page, click Close.

Parent topic: Login administration