Why you may need Virto Active Directory SharePoint Password Reset Web Part
SharePoint Password Reset web part is used for a quick and simple resolving of situations when a user forgets his password or his password is expired, according to password security policy. If there is no such a tool, a user must contact his administrator every time he needs to reset his password.
How the AD Password Reset works
Situation
SharePoint site uses Windows Authentication, and users’ profiles are stored in Active Directory. A user tries to logon to a SharePoint site of his company, but he has forgotten the password. He needs to reset his password and enter the site.
Solution
This user cannot logon to the SharePoint site. But he can navigate to the SharePoint WSS site with anonymous access (created by SharePoint administrator before) and use SharePoint Password Reset Web Part installed on it. As a result, the user receives his password for access to a SharePoint site.
How to implement
To implement the solution and make it possible for SharePoint users to reset their password when they cannot logon to a SharePoint site, these actions must be done:
- SharePoint WSS site with anonymous access should be created.
- Virto SharePoint Password Reset Web Part should be installed on WSS site.
- SharePoint users must be informed about this site, or automatic redirect for wrong password cases can be adjusted.
- SharePoint Password Reset Web Part must be adjusted (security question or email option, see Virto Password Reset Administration section)
Online Password Recovering
There are two ways to manage forgotten SharePoint user passwords – request a new password on the site online or by email. According to security policy, in the first case before the password change, the user will answer some secret questions (from one to three). Secret questions are set by the system administrator and the values are taken from corresponding fields of AD profile (for instance, date of birth, mobile phone etc.). In case of successful verifying, the option of password reset will be available for this user. As soon as he activates it online, he will see his new temporary password. Password security policy defined in AD is applied for generating the password.
E-mail Password Recovery
If the password is sent by email, the user must enter his login and email address to receive the new password. Then the message about user’s password request and suggestion to confirm or decline the reset will be sent to this email address. If the password reset is confirmed, another email message with a new password will be sent.
Pay attention to the fact that the new password is temporary and it is required to change it to a constant one. This can be done with the help of the system administrator or SharePoint Password Change Web Part. In case of both web part installation, you will have the complex solution for SharePoint password management.