Skip to main content

Question

 Bertus Van Den Hof (BERTUSVDHOF)
IMG

IMG
NL
BERTUSVDHOF Member since 2011 4 posts
IMG
Posted: May 21, 2025
Last activity: May 22, 2025
Posted: 21 May 2025 4:01 EDT
Last activity: 22 May 2025 3:21 EDT

Password reset not compliant with policies when done in a SSO context

I want as a Manager to reset a password of an Operator with basic authentication.

Scenario one: Manager is logged in under basic authentication: the password of the operator has to comply to the password policies. This works as expected.

Scenario two: Manager is logged in with SSO (external authentication): the password reset does not check against the password policies. This does not work as expexted. Insecure password are possible.

To see attachments, please log in.
Pega Platform '24.1.2
Pega Platform
Security
Government
Lead System Architect

  • Reply

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice