000038330 - How to modify the frequency that users receive email notifications requesting that they change their password in RSA Identity Governance & Lifecycle

Document created by RSA Customer Support Employee on Jan 15, 2020
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000038330
Applies ToRSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0, 7.1.1
 
IssueThe Password Management feature in RSA Identity Governance & Lifecycle (Admin > System > EditOn button next to the Password Management Module) allows password policies to be defined that send emails to users requesting that they change their password based on some event such as an approaching password expiration date or if someone has reset their password for them. The frequency that these emails are sent to users is managed by the password policy being used. This RSA Knowledge Base Article explains how to control the frequency of the emails that are sent to users requesting that they change their password.


Emails requesting that a user change their password may be similar to the following: 
 

Hello <user name>,
Your password on <directory/application> for account <account name> <message>.
Please change your password as soon as possible to avoid denial of service.
These reminders will be sent to you periodically until you change your password.
Thank you.


or 




Hello <user name>,
Your password on <directory/application has been reset by someone else.
Please change your password as soon as possible to avoid compromise of your account.
These reminders will be sent to you periodically until you change your password.
Thank you.


 
ResolutionThe frequency of emails to be sent is defined by the password policy being used.

Password policies are defined under the Requests > Password Management > Password Policies tab. Here a policy can be defined as the default password policy for all business sources or it may be used for specific business sources as defined under the Resources > Directories/Applications > {Directory/Application name} > Password Policy tab.

To control the frequency of password expiration emails:
  1. In the user interface go to Requests > Password Management > Password Policies tab
  2. Click on the Password Policy name.
  3. Edit the Password Policy
  4. The Password Expiration fields are defined as:

   Specify the number of days a password is valid before it automatically expires and the number of days before it expires that the system sends an expiration notification email to the user.


  1. Under Password Expiration choose the number of days before a password expires and the number of days to warn users before their password expires. If the password policy is associated with a specific business source, ensure the expiration policy defined in RSA Identity Governance & Lifecycle matches the policy of the collected data source.

User-added image


IMPORTANT: It is recommended that these values not be set to '0'. If you define either of these values to '0', emails will be sent every day. 
 

Attachments

    Outcomes