Set up password recovery for users
This functionality is available for Creatio 8.1.3 and later.
Password recovery functionality enables users to reset their passwords on their own without contacting the administrator if they forget their password and cannot log in. This functionality is available for both company employees and external users.
To reset their password, users need to enter their login or email address. The password recovery instructions will be sent to their email address used as login or specified in user profile. Creatio includes a defense against brute-force attacks on login credentials. The system enforces a password reset limit. An excessive number of attempts will lead to a temporary blocking of the ability to recover the password. All password resets are tracked in the Audit log.
Password recovery is preconfigured for external users out-of-the-box. For company employees, perform additional setup.
The general setup procedure is as follows:
- Set up mailbox for sending password recovery notifications. Read more >>>
- Set up the message template to use for password recovery notifications (optional). Read more >>>
- Enable password recovery for company employees. This step is performed for Creatio instances that were updated to version 8.1.3 from earlier versions. For Creatio instances deployed on version 8.1.3 and later password recovery is enabled out-of-the-box. Read more >>>
Step 1. Set up mailbox for password recovery notifications
To setup sending password recovery emails to users, add a dedicated mailbox used only for this purpose to Creatio. The setup process is the same as for a personal mailbox. Learn more: Set up a personal mailbox.
After you add the mailbox, specify it in the "Mailbox for registration and password recovery" ("SSPRegistrationMailbox" code) system setting. To do this:
- Open the System settings section either from the "Studio" workplace or the System Designer.
- Locate the "Mailbox for registration and password recovery" ("SSPRegistrationMailbox" code) system setting in the list and click it to open its page.
- Specify the mailbox address in the Default value field.
- Save changes.
As a result, Creatio will use selected mailbox to send email notifications to users who request password recovery.
Step 2. Set up the template for password recovery notifications
Creatio has password recovery email template set up out of the box. If needed, you can edit the template or add localizations to it. Learn more: Work with message templates.
If you want to change the existing template, update the "Password reset email template" ("PortalRecoveryPasswordEmailTemplate" code) system setting. To do this:
- Open the System settings section either from the "Studio" workplace or the System Designer.
- Locate the "Password reset email template" ("PortalRecoveryPasswordEmailTemplate" code) system setting in the list and click it to open its page.
- Specify the needed template in the Default value field.
- Save changes.
As a result, Creatio will use the new template in the email notifications to users who request password recovery.
Step 3. Enable password recovery
To enable password recovery for company employees, fill out "Enable password recovery for internal users" ("UsePasswordRecoveryForInternalUsers" code) system setting. To do this:
- Open the System settings section either from the "Studio" workplace or the System Designer.
- Locate the "Enable password recovery for internal users" ("UsePasswordRecoveryForInternalUsers" code) system setting in the list and click it to open its page.
- Select the Default value checkbox.
- Save changes.
As a result, company employees will be able to reset their passwords on their own without requiring assistance from the system administrator. The Creatio login page will be enhanced with a "Forgot your password?" link. Clicking this link will redirect the user to a password reset page. After they enter their login or email address, they will receive a notification that contains instructions on how to recover their password.