ZTrust Documentation
  • User Manual - ZTrust V3.0
    • Key Terminologies
    • Guide to Navigation
      • Clients
        • Clients List
        • Initial Access Token
        • Client Registration
      • Client Scopes
      • Realm Roles
      • Users
      • Groups
      • Sessions
      • Events
        • User events
        • Admin events
      • Realm Settings
        • General
        • Login
        • Email
        • Themes
        • Keys
        • Events
        • Localization
        • Security Defenses
        • Sessions
        • Tokens
        • Client Policies
        • User profile
        • User Registration
      • Authentication
        • Flows
        • Required Actions
        • Policies
      • Identity Providers
      • User Federation
    • Admin Manual
      • Creation of a Realm
      • Creation of a User
        • Login to Account Console
      • How to set up Password Invalidator
      • How to set up Password Policies
      • How to set up Brute Force Detection feature
      • How to enable the One-to-Many feature
      • How to set up Multi-Factor Authentication
        • Setup of ReCAPTCHA registration flow
        • Setup of ReCAPTCHA login flow
        • Setup of OTP Based Registration
        • Setup of OTP Based Login
        • Setup of QR Code Based Authentication
        • Setup of Push Notification Based Authentication
        • Setup of Biometric based Authentication
        • How to set-up 2FA Authentication
      • ZTrust Authenticator App
      • Self-Service Portal (SSP)
        • Authenticator Setup from Self-Service Portal
        • Set Your Profile Photo in Self-Servicce Portal
      • How to setup Session Invalidator feature
      • How to setup GDPR Compliant feature
      • How to set up Social Media login
      • How to setup Inactive User Tracking feature
      • How to setup Archive Inactive User feature
      • Role-Specific Attribute Based Access Control at client level
      • Self-Role Request at the Business Level
      • Self-Role Request at the Application Level
      • How to setup Delete Archived/Inactive User feature
      • Reporting Module
      • Geo Tagging and Fencing
      • Event Type
  • Release Notes
    • ZTrust V3.1.0
    • ZTrust V3.0.0
    • ZTrust V2.1.0
    • ZTrust V2.0.1
    • ZTrust V2.0.0
    • ZTrust V1.0.4
    • ZTrust V1.0.3
    • ZTrust V1.0.2
    • ZTrust V1.0.1
    • ZTrust V1.0.0
  • Frequently Asked Questions
  • User Manual - ZTrust V2.0
    • Key Terminologies
    • Guide to Navigation
      • Clients
        • Clients List
        • Initial Access Token
        • Client Registration
      • Client Scopes
      • Realm Roles
      • Users
      • Groups
      • Sessions
      • Events
        • User events
        • Admin events
      • Realm Settings
        • General
        • Login
        • Email
        • Themes
        • Keys
        • Events
        • Localization
        • Security Defenses
        • Sessions
        • Tokens
        • Client Policies
        • User profile
        • User Registration
      • Authentication
        • Flows
        • Required Actions
        • Policies
      • Identity Providers
      • User Federation
    • Admin Manual
      • Creation of a Realm
      • Creation of a User
        • Login to Account Console
      • How to set up Password Invalidator
      • How to set up Password Policies
      • How to set up Brute Force Detection feature
      • How to enable the One-to-Many feature
      • How to set up Multi-Factor Authentication
        • Setup of ReCAPTCHA registration flow
        • Setup of ReCAPTCHA login flow
        • Setup of OTP Based Registration
        • Setup of OTP Based Login
        • Setup Time-based One-Time Password (TOTP) Based Login
        • Setup of QR Code Based Authentication
        • Setup of Push Notification Based Authentication
        • Setup of Biometric based Authentication
        • How to set-up 2FA Authentication
      • How to setup Session Invalidator feature
      • How to setup GDPR Compliant feature
      • How to set up Social Media login
      • How to setup Inactive User Tracking feature
      • How to setup Archive Inactive User feature
      • How to setup Delete Archived/Inactive User feature
      • Role-Specific Attribute Based Access Control at client level
      • Reporting Module
      • Geo Tagging and Fencing
      • Event Type
  • User Manual - ZTrust V1.0
    • Guide to Navigation
      • Realm Settings
        • General
        • Login
        • Keys
        • Email
        • Themes
        • RabbitMQ Config
        • Localization
        • Cache
        • Tokens
        • Client Registration
        • Client Policies
        • Security Defenses
      • Clients
      • Client Scopes
        • Default Client Scopes
      • Roles
        • Realm Roles
        • Default Roles
      • Identity Providers
      • User Federation
      • Authentication
        • Flows
        • Bindings
        • Required Actions
        • Password Policy
        • OTP Policy
        • WebAuthn Policy
        • WebAuthn Passwordless Policy
        • CIBA Policy
      • Groups
        • Default Groups
      • Users
      • Sessions
        • Realm Sessions
        • Revocation
      • Events
        • Login Events
        • Admin Events
        • Config
      • Import
      • Export
    • Admin Manual
      • Creation of a Realm
      • Creation of a User
        • Login to Account Console
      • How to set up Password Invalidator
      • How to set up Password Policies
      • How to set up Brute Force Detection feature
      • How to enable the One-to-Many feature
      • How to set up Multi-Factor Authentication
        • Setup of ReCAPTCHA registration flow
        • Setup of ReCAPTCHA login flow
        • Setup of OTP Based Registration
        • Setup of OTP Based Login
        • Setup of QR Code Based Authentication
        • Setup of Push Notification Based Authentication
        • Setup of Biometric based Authentication
      • How to setup Session Invalidator feature
      • How to setup GDPR Compliant feature
      • How to set up Social Media login
      • How to setup Inactive User Tracking feature
      • How to setup Archive Inactive User feature
      • How to setup Delete Archived/Inactive User feature
Powered by GitBook
On this page
  1. User Manual - ZTrust V1.0
  2. Admin Manual

How to set up Password Invalidator

PreviousLogin to Account ConsoleNextHow to set up Password Policies

Last updated 1 year ago

This feature invalidates the user's initial password after their first login, prompting them to create a new password. This measure ensures that only the user is aware of their password.

To set up the Password Invalidator feature, do the following steps -

  1. Click on Events

  1. Click on Config.

Field Name
Mandatory (Yes/No)
Field Type
Description

Yes

Event Listeners

Dropdown

Select the required event or action that is to be added as part of configuration

No

Save Events

Toggle

Keep it ON to retain a record of various events, which can be chosen and utilized as needed.

  1. In the Event Listeners field, add - scheduler-listener.

The scheduler operates on a 24-hour cycle. It checks user passwords and if any password is nearing expiration, it sends out an email reminder prompting users to update their passwords.

  1. Go to Realm Settings.

  1. Go to Localization.

Field Name
Field Type
Description

Locale

Dropdown

Select the locale on which you want to work on

locale

Text

Provide any name to create the locale which is required

  1. Provide any name for the locale and click on Create. For example - Password-invalidation.

  1. Mention the key as - check-password-expiry and value as false.

Field Name
Field Type
Description

Key

Text

Enter the attribute that you want to define within this locale

Value

Text

Enter the value that needs to be defined for that attribute

  1. Click on Save.

  2. Click on the dropdown for Locale and select Password-invalidation.

A table will be displayed containing the Key-Value pairs and the Actions to Edit or Delete it.

  1. Click on Add localization text.

  2. Provide the Key as password-warning-time and any number as Value, example - 7.

Field Name
Field Type
Description

Key

Text

Enter the attribute that you want to define within this locale

Value

Text

Enter the value that needs to be defined for that attribute

  1. Click on Save.

  2. Again click on the dropdown for Locale and select Password-invalidation.

  1. Again click on Add localization text.

Field Name
Field Type
Description

Key

Text

Enter the attribute that you want to define within this locale

Value

Text

Enter the value that needs to be defined for that attribute

  1. Enter the Key as password-warning-time-unit and Value as required. Value can be minutes, hours, days.

  2. Click on Save.

  1. Again click on Add localization text.

Field Name
Field Type
Description

Key

Text

Enter the attribute that you want to define within this locale

Value

Text

Enter the value that needs to be defined for that attribute

  1. Enter the Key as api-base-url and Value as required.

  2. Click on Save.

  1. Click on Edit Action for check-password-expiry.

  2. Change the Value to true from false.

  1. Click on Save.