Password Expiration

Org admins can configure the password expiration policy in Manager Settings or in Admin Manager. The expiration policy defines how often passwords expire and how much notice users receive. Org admins can also immediately expire all passwords, including their own.

When a password expires, the user must enter the expired password to verify their identity and then create a new password. This applies to APIs and UI logins.

Be aware of the following restrictions and implications:

  • If an account belongs to multiple Orgs, the Org admin must have administrative privileges for all those Orgs to enforce password expiration for that user or service account. 
  • When an account is locked or a password is expired, the account owner cannot invoke SnapLogic Public APIs, and their Scheduled Tasks will fail to run. See Support and Limitations in Triggered Tasks.

Configuring Password Expiration Policy

  1. Log into SnapLogic and click the Manager tab.
    The left pane lists configuration categories above the project spaces. 

  2. Click Settings to open Organization Settings.
  3. Scroll down to User Password Expiration Policy: 


  4. Select Enforce password expiration to enable the policy.

  5. Set Expiration period to the number of days after which passwords will expire.

  6. Set Expiration notice period to the number of days prior to the expiration date when users should receive notifications.

    Whenever users log in to SnapLogic during the notice period, the following notification reminds them to change their passwords.

     

  7. Click Update to apply the changes.

Enforcing Password Expiration with Immediate Effect

  1. Log into SnapLogic and click the Manager tab.
    The left pane lists configuration categories above the project spaces. 

  2. Click Settings to open Organization Settings.
  3. Scroll down to User Password Expiration Policy: 

  4. Click Expire All Passwords
    SnapLogic immediately signs out all users, including the Org administrator.

    • UI users are redirected to a page where they can change their passwords
    • API users receive the 401 (Authentication required) status code.


See Also

Changing Your Username and Password