IBM Security Privileged Identity Manager, Version 2.1.1

Hiding generated reset passwords

You might want to prevent every user or administrator who can reset passwords from seeing the new password that is generated. You can disable password editing and hide generated passwords.

About this task

If you do not hide generated passwords, the users or administrators who are resetting a user's password see the password that was generated.

Procedure

  1. From the navigation tree, select Set System Security > Set Security Properties.
  2. Select the Hide generated passwords for others check box, and click OK.
    Note: If the Enable password editing check box is selected, you cannot select the Hide generated passwords for others check box. Clear the Enable password editing check box if you want to hide generated passwords.
  3. On the Success page, click Close.

Results

A group member who can create accounts, such as a member of the help desk assistant group, can reset a password. However, the group member cannot see the new password. IBM® Security Privileged Identity Manager generates the password.

Parent topic: Enabling password resets

Feedback