ArtfulBits Password Reset Web Part allows users to reset their forgotten passwords
from within the SharePoint environment without administrator intervention. If user
does not remember his password and wants to log in SharePoint site, he can reset
his forgotten password via web part interface, passing through the various degrees
of protection, included security questions and / or email confirmation. New password
can be shown on page, or sent to user email, or even user can type new password
manually.
Feature List
|
Feature
|
|
|
|
Multiple providers support including Active Directory services, SQL membership provider and others
|
|
|
|
Configurable account required fields (Username and/or user email)
|
|
|
|
Ability to set security questions for AD password reset
|
|
|
|
Password reset request confirmation
|
|
|
|
Allows users to type new password manually
|
|
|
|
Ability to auto generate new password and deliver it online or via email
|
|
|
|
Password changed email notification
|
|
|
|
Customizable email notifications
|
|
|
|
Language pack support (desired localization could be added by request)
|
|
|
Why ArtfulBits Password Reset Web Part?
With importance of login security growing and password requirements increasing,
it is becoming easier for users to forget their new passwords. With the ArtfulBits
Password Reset Web Part, users now have the ability to submit their own password
reset requests through SharePoint, no longer requiring IT Administrations assistance.
After user identification, he can either type new password manually via web part
interface or system will auto generate new one and show it on a page or send via
email depending on web part configuration.
Used in combination with ArtfulBits Password Change and Password Expiration Web
Part it can substantially improve users’ password management.
How to Use
Password Reset Process Flow
Password Reset supports difference verification methods: using security questions
and/or email confirmation. The following diagram provided below shows password reset
process flow.
Password Reset Global Settings
Before using Password Reset Web Part it is required to activate ArtfulBits Password
Reset Web Part site collection feature and specify Password Reset global settings
for each Web application Zone.
Navigate to Password Reset Settings page to specify password reset global settings
(Site Actions --> Site Settings --> Site Collection Administration --> Password Reset settings):
In Authentication Type section, you can see current Web application Zone (for which
password reset is configured), Web application URL and authentication type for this
zone.
In order to enable password reset for current zone, check Yes under Allow password reset
for this zone?. If No is selected, then Password Reset Web Part will not be visible
for this zone.
If current zone authentication uses Active Directory users (Windows authentication
or FBA with LDAP membership provider), then it is required to provide administrative
account, that has a right to reset AD users passwords.
If you want to use security questions to validate AD user identity, check Enable
Security Questions and specify at least one security question. You should set question
displayed in the Web Part and define the field in Active Directory that the user’s
answer is confirmed against.
Note: This flag is auto determined for FBA membership providers (except LDAP membership
provider), and depends on provider's RequiresQuestionAndAnswer property.
If RequiresQuestionAndAnswer
is set to true, then user should answer a password question for password reset.
In order to send confirmation email before password reset, you should check Enable
Email Confirmation option. You can change default message displayed for user in
web part and confirmation email Subject and Body. You can use the following key
templates in email fields: $USERNAME$, $USEREMAIL$, $CONFIRMLINK$.
Note: If FBA membership providers (except LDAP membership provider) has RequiresQuestionAndAnswer
equal to True and EnablePasswordRetrival is equal to False, then this option will
be disabled in this case.
Password reset allows to generate new password automatically or to type new one
manually. In Password Receive Type section check appropriated option for it:
- Generate new password automatically and show it on page – new password will
be generated automatically and will be shown via Web Part.
$USERNAME$, $USEREMAIL$, $NEWPASSWORD$ template keys are supported as well.
- Generate new password automatically and send it via email – new password will
be generated automatically and email will be sent to user email account with new
password. $USERNAME$, $USEREMAIL$, $NEWPASSWORD$ template keys can be used in email
subject and body.
- Enable to type new password manually – users will be able to type new password
and confirm it manually via Web Part interface.
In order to avoid any security issues, you can check Send email notification on
password changed. As soon as new password is generated or user types new one manually,
system will send email notification to user email address just inform that his password
has been changed.
If user account is locked due to AD password policy violations (for ex. an incorrect
password was entered three times when user logins), user can be unlocked automatically.
For it, you should check Unlock account automatically option in Additional Settings
section.
Setting up Password Reset on an Anonymous Access SharePoint Site
Enable Anonymous Access
In order to access to the Web page for the users, that forgot their passwords, you
should enable anonymous access for SharePoint site.
Open SharePoint Central Administration --> Application Management --> select target
Web Application --> Authentication Providers and choose authentication provider:
In Anonymous Access section, check Enable anonymous access:
After you have enabled anonymous access to Web application, you should enable it
for your SharePoint site collections that needs password reset. For that, open SharePoint
site and go to Anonymous Access settings page (Site Actions --> Site Permissions -->
Anonymous Access).
In Anonymous Access section, specify the parts of SharePoint site that anonymous
users can access. If you select Entire Web site, anonymous users will be able
to view all pages in your Web site and view all lists and items which inherit permissions
from the Web site. If you select Lists and libraries, anonymous users will be
able to access pages and view items only for those lists and libraries that have
enabled permissions for anonymous users.
In order to use ArtfulBits Password Reset web part it is enough to select List
and libraries option under Anonymous users can access box.
Adding Web Part to a Page
After anonymous access to site is configured, you can add Password Reset Web Part
to your custom page or use built-in ArtfulBits Password Reset page. This page is
included in Password Reset package, and you can find it by following URL:
http://[sitecollectionurl]/_layouts/ArtfulBits.WebParts/PasswordReset/PasswordReset.aspx
In order to use Password Reset web part in your custom page, you should:
- Enable anonymous access to this page.
- Add Password Reset Web Part to this page.
On Page Edit, click Add a Web Part in
the area on the page. Select ArtfulBits Web Parts category, select ArtfulBits
Password Reset Web Part and then click Add.
- Configure Password Reset Web Part:
a) Select Edit Web Part from web part menu.
b) Password Reset Web Part configuration pane is displayed on the right side
of the screen. In this pane you can configure custom properties of web part as for
standard web part.
c) In the Password Reset Settings section you can specify default view of the
web part. It can be Forgot Password? link or password reset form.
d) To specify password reset global settings, you should click Click here to
open Password Reset settings page link.
