{"id":48711,"date":"2020-12-11T09:00:00","date_gmt":"2020-12-11T14:00:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=48711"},"modified":"2024-07-22T18:10:32","modified_gmt":"2024-07-22T22:10:32","slug":"password-management-for-user-identity-lifecycle","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/password-management-for-user-identity-lifecycle","title":{"rendered":"JumpCloud\u2019s Force Password Change Expands User Identity Management Solution"},"content":{"rendered":"\n

Picture this: You\u2019re an IT admin and you get a frantic message from an employee, Neil, who left his Windows computer in the back of a Lyft on a work trip in New York City. Neil is terrified his device could be compromised if his credentials are hacked (what Neil doesn\u2019t tell you is that he\u2019s written down his password on a Post-it Note that\u2019s tucked in his laptop case and, against organizational security protocols, it\u2019s a password he uses to log into several resources).<\/p>\n\n\n\n

You spring into action to protect Neil\u2019s identity and the data on his device: You\u2019re logged into the JumpCloud Admin Console, and in under a minute and with just a few clicks you set a new temporary password for Neil, and click \u201cForce Password Change\u201d setting to require him to change the temporary password at the next logon to the device.  Even though Neil\u2019s old password was written on that Post-it Note, anyone who gets ahold of his laptop now won\u2019t be able to use it to log on with Neil\u2019s identity and access any work resources.<\/p>\n\n\n\n

Situations like that imaginary one with Neil can happen to any organization, anywhere and any time. It doesn\u2019t matter the size of your organization or the industry you\u2019re in: IT administrators must be able to secure and manage user credentials with ease.<\/p>\n\n\n\n

JumpCloud\u2019s new Force Password Change setting can help admins quickly and efficiently protect device and resource access, and more: It expands the directory platform\u2019s user identity management services to ensure IT teams can optimize employee onboarding, meet compliance requirements, and manage password criteria across the full end user lifecycle.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

When Does Password Management Begin and End? <\/h2>\n\n\n\n

Often the first people a just-hired employee communicates with at a new job is an IT admin who\u2019s responsible for setting the end user up on their work device during onboarding. This is the first time an end user needs to create one or multiple passwords to log into their work computer and resources.<\/p>\n\n\n\n

Passwords are inherently more secure the fewer people who know them. During onboarding, IT will typically provide the new employee with a temporary password to use just one time to log into their work device. JumpCloud\u2019s Force Password Change feature lets admins enforce that a new user update their one-time, pre-specified password the first time they log into the JumpCloud User Portal where they access resources like SSO applications, and upon the next time they log into their Windows or Mac device.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

What about the benefits of requiring password changes for existing users?<\/p>\n\n\n\n

In addition to IT teams being able to remotely protect an employee who suspects their credentials are compromised (like Neil), this feature also lets admins help users who just forget their password and need to reset it with a new one. JumpCloud also lets admins enforce end user password history so users cannot recycle the same password for up to 24 previously-used passwords.<\/p>\n\n\n

\n
\"\"<\/figure><\/div>\n\n\n

That password aging option is found on JumpCloud\u2019s User Security Settings page in the Admin Console, along with additional ways to manage and secure end user credentials<\/a> like:<\/p>\n\n\n\n