Welcome to the #dominoforever Product Ideas Lab! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated jointly by the IBM & HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino page.


Resetting the user password on the fly

The administrator should be able to reset the user password even if the IBM notes is open.

The old password should not be usable for the next login. Currently if the old password is used the user can access IBM nots even if password reset from ID vault has been set.

 

This will benefit all admins who need to temporary disable a password, without changing anything.

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Dec 3 2018
  • Attach files
  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    December 03, 2018 13:19

    I would furthermore say, that it is a major security breach, that the old password still works, after it was changed! Think about someone, who change the password because he thinks his account was hacked!

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    December 06, 2018 08:16

    I have tested this and the old password will still work until you change your password. I believe the best practice is also to force user to change their password immediately after reset. Plus it is recommended that you enable password checking in Domino server.

    Tinus Riyanto - Prisma Global Solusi