Uploaded image for project: 'Confluence Cloud'
  1. Confluence Cloud
  2. CONFCLOUD-30236

Force password reset for all users

    XMLWordPrintable

Details

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

    Description

      NOTE: This suggestion is for Confluence Cloud. Using Confluence Server? See the corresponding suggestion.

      Administrators should have an easy way to force users to change passwords in bulk format in emergencies.

      Has this been discussed as a possible feature?
      Are there drawbacks to having a mass password reset force in administration?

      Would setting password expiration to 1 (day) expire all passwords in 24 hours? Is there a way this can be immediately enforced on all users without manually manipulating the database?

      This is a result of the security vulnerability notification of 8.5.2013. Customers desire a way to force all users to change passwords. This specific case prompted by a Confluence instance backed by crowd. Setting the requiresPasswordChange field to true in the database for all confluence directory users does not prompt Confluence users to change their password on login. It shows failed authentication error.

      Attachments

        Issue Links

          duplicates

          Suggestion - CONFCLOUD-11496 Advanced password management

          • Gathering Interest
          is related to

          Suggestion - CONFSERVER-30236 Force password reset for all users

          • Closed

          Activity

            People

              Unassigned Unassigned
              rgoodwin Ryan Goodwin (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              12 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: