Entrust Identity as a Service™ User Help
Click here to see this page in full context

Report errors or omissions

  1. Home >
  2. Manage authenticators >
  3. Manage password authenticators

Manage password authenticators

There are two types of password authenticators available for use on Identity as a Service—Identity as a Service passwords and Microsoft Active Directory (AD) passwords.

Identity as a Service passwords

Identity as a Service passwords are assigned to you manually by your administrator. You can use the password to sign in to IDaaS or to access an application through IDaaS. IDaaS passwords must meet the password restrictions set by your administrator.

Active Directory (AD) passwords

Active Directory (AD) passwords are passwords that have already been assigned to a you on your corporate directorynot through Identity as a Service. The AD password authentication request is sent from Identity as a Service to the password agent in your organization. The password agent uses the password you entered to authenticate with the Active Directory. Similar to OTP, your AD password is not shown in your list of active authenticators.

AD passwords can be used to log in the same way that an Identity as a Service password is used. You merely enter your password as a part of logging in to Identity as a Service or an application.

Note: If your account was synced from Active Directory and your Active Directory password has expired, when you log in to Identity as a Service using your old password you will be prompted to set a new password before you can access Identity as a Service.

Choose one of the following procedures, as required.

Add a password authenticatorAdd a password authenticator

You can assign yourself an Identity as a Service password, and once activated use it to authenticate. You can only have one Identity as a Service password at a time.

Add an Identity as a Service password authenticator

Click   > My Profile. The My Profile page appears.

Click the Authenticators tab. The Authenticators page appears.

Click . A drop-down list of authenticators appears.

Select Password. If you hvae multiple passwords, select the password you want to add.

The Change Password Settings page appears.

In the New Password field, enter your password.

Enter the same password into the Confirm Password field.

Review each item in the Password Rules box to confirm your password meets all of the requirements. A appears next to the rule when your entry meets the required condition.

Click Save.

You can repeat this procedure to add another password, if applicable and required.

Change your passwordChange your password

Change your password

Go to > My Profile. The My Profile page appears.

Click the Authenticators tab.

Click  to the right of the Password that you want to change. A drop-down list appears.

Click Change password. The Edit Password Settings dialog box appears.

Enter your current password in the Current Password field.

In the New Password field, enter your new password.

Note: Your password must meet all the Password Rules to be accepted.

In the Confirm Password field, retype your new password.

Click Save.

Note: Updates to passwords synchronized from a directory are reflected in IDaaS after directory synchronization occurs.

Reset your passwordReset your password

You can perform a password reset when prompted with a password authentication challenge. At minimum, you can only reset your password when logging in to the application if:

Password reset is enabled for your account; and

You have an Identity as a Service password.

Reset your password

Log in to your Identity as a Service account.

Enter your User ID and then click Next. The Password dialog box appears.

Click Forgot your password? You are prompted to complete an authentication challenge to confirm your identity.

Complete the authentication challenge by entering the required response.

Tip: You can perform a different type of authentication challenge by clicking Alternative Authentication. This gives you access to a list of authentication challenges instead of the one presented to you.

Note: Temporary Access Codes can only be used to complete Temporary Access Code authentication challenges for password reset. They cannot be used to complete Grid Card, OTP, or Token challenges for password reset.

Click Login.

Optional: If prompted, complete a second factor-authentication challenge.

Enter the required response to complete the authentication challenge.

Click Login.

You are prompted to enter information required to reset your password.

Enter a new password into the New Password field.

Enter the same password into the Confirm Password field.

Note: Your new password must meet all the of required rules. These are shown on the password change dialog box. When the password meets the rule requirement, a green check mark  () appears beside the rule.

Click Save. The password is reset. A prompt appears asking you to complete a password authentication challenge using the new password.