How To Configure Automated Password Rotation Or Reset Expired Passwords In Pam

How to Configure Expired Passwords Rotation

When passwords expire or are about to expire, Securden can automatically change the passwords (for the accounts which support remote password reset). You can define how the password rotation has to take place - how many days prior to the expiration the password rotation should be attempted, and how many times the attempts are to be made. The new password gets updated in both the end machine and Securden repository so you don't have to manually change the passwords anywhere.

How to Configure Rotation of Expired Passwords

Prerequisite: Only the accounts for which remote access credentials have been provided can have password rotation configured. You can configure remote credentials from Admin >> Device Level Configurations.

To configure Password Rotation, navigate to Admin >> Notifications >> Expired Password Rotation and move the toggle “Reset Passwords Upon Expiration” to green.

When to Rotate Passwords

You can configure Securden to carry out password changes on the day of password expiration by choosing ‘On Expiration Date’. You may also decide to rotate a few days prior to the expiration by choosing ‘Prior to Expiration’ date.

If you choose ‘On Expiration Date’,

You need to provide the frequency of password reset attempts, which can be as low as a minute.

You should also specify the maximum number of attempts to be made to reset a password in the ‘Number of retries’ field.

You can choose to reset the passwords that were already expired at the time of configuration by selecting the option ‘Reset the already expired password’.

If you choose ‘Prior to Expiration’,

You should specify how many days before the expiration date the reset attempts should be made.

You need to provide the frequency of password reset attempts, which can be as low as a minute.

You should also specify the maximum number of attempts to be made to reset a password in the ‘Number of retries’ field.

You can choose to attempt password resets only in accounts whose passwords are about to expire by selecting the option ‘Consider only the passwords that are about to expire’.

You can choose to reset the passwords that were already expired at the time of configuration by selecting the option ‘Reset the already expired password’.

How to Edit Password Rotation Configurations

You can modify the password rotation settings anytime as desired from the Admin >> Notifications >> Expired Password Rotation section.