Resetting a password using a one-time passcode through email

Use Cases

bundle
solution-guides
ft:publication_title
Use Cases
Product_Version_ce
category
ContentType
howtodoc
ContentType_ce
How-to

Reset a password through a user's email account using a one-time passcode (OTP) .

  • Make sure Password Reset Type is set to Email One-Time Password in your HTML Form Adapter instance configuration.

For resetting a password with a one-time passcode through email, you must setup a SMTP mail server in PingFederate.

  1. Go to Authentication IdP Adapters and, in the Instance Name list, select the adapter instance that you want to use.
  2. Optional: Create a local identity profile (LIP).
    Note:

    Perform this step if you want to allow the user to manage self-service registration using their LIP, such as managing a password reset or forgot password scenario. If not, you can skip this step and go to step 3.

    1. On the IdP Adapter tab, click Manage Local Identity Profiles.
      The Local Identity Profiles page opens.
    2. Reuse an existing Local Identity Profile or click Create New Profile to create a new profile.
      The Local Identity Profile page opens.
    3. On the Profile Info tab, select the Enable Registration check box to show the Email Verification tab and configuration settings for this identity profile. Click Next.
    4. On the Email Verification tab, select the Enable Email Ownership Verification check box to show additional email verification settings. Click Next.
    5. On the Summary tab, click Done.
    You're returned to the Create Adapter Instance window.
  3. On the IdP Adapter tab, click Manage Notification Publishers.
    The Notification Publishers page opens.
  4. Click Create New Instance.
    The Create Notification Publisher Instance page opens.
  5. On the Type tab, from the Type list, select SMTP Notification Publisher. Click Next.
  6. On the Instance Configuration tab, in the Email Server field, enter one of the following:
    • a mailtrap.io
    • a gmail smtp server

    A screen capture of the Instance Configuration tab in the Create Notification Publisher Instance configuration window. There are settings to configure the server to communicate with your organization's SMTP mail server. The user can edit the From Address, Email Server, SMTP Port, Encryption Method, SMTPS Port, Verify Hostname, and UTF-8 Message Header Support settings. In this screen capture the SMTP Port field has 25 entered, the Encryption Method drop-down has None selected, the SMTPS Port has 465 entered, and the Verify Hostname check box is selected.
  7. Click Next.
  8. On the Summary tab, click Save.
  9. Go to the Sign On page and click the Trouble Signing On? link.

    A screen capture of the Sign On page. The page displays the username and password fields as well as the Sign On button. If the user has issues signing on, the Change Password and Trouble Signing On links are provided.
    A password reset notification email containing an OTP is sent to your inbox.
  10. In your email inbox, open the password reset email from PingFederate and copy the OTP.
    You're directed to the Account Recovery page.
  11. In the Account Recovery page, in the Enter Security Code field, paste the OTP. Click Validate.

    A screen capture of the Account Recovery page. There is the Enter Security Code field, which is requesting the one-time passcode sent to the user's email, and the Validate and Cancel buttons. The user can click Validate to progress or Cancel to stop the password reset process.
    You're directed to the Reset Your Password page.
  12. Enter a new password in the New Password and Confirm New Password fields. Click Reset.

    A screen capture of the Reset Your Password page. The page displays the New Password and Confirm New Password fields, requesting the user to enter and reenter their password change. The user can click Reset to confirm and save the password changes or Cancel to stop the password changes.