Offline Password Reset (OPR) is an independently deployed component that enables users to use the Offline Password Reset functionality provided by Password Manager. This functionality allows resetting passwords when users have forgotten their current passwords and their computers are not connected to the intranet (Active Directory is not available).
Offline Password Reset should be installed on users’ computers through group policy.
The password can be reset by two methods when the user is offline. Do one of the following to reset the password when the system is not connected to corporate network.
With mobile QRcode scanner:
-
Scan the QRcode from the welcome page and click Next.
-
Scanning the QRcode redirects to Password Self-Service Site on the mobile device.
-
On the Password Self-Service Site, select the Forgot My Password option. This will give a response code to reset your password on the offline system.
-
Type the response code in the Response code text box.
-
Type the new password and confirm the new password in relevant text boxes.
-
Click Next to reset the password.
NOTE:
-
If you don't have latest .NET Framework to display QRCode Image, click Next to reset your password using the challenge code.
-
Use the latest prm_gina.admx file by removing the older file from group policy.
If the user fails to reset the password three times on Password Reset wizard for any reason, Offline Password Reset Wizard generates a new QR code. The user must scan the new QR code and follow the steps again to reset the password.
NOTE:
-
For the QR code to work, make sure that Password Manager Self-Service Site URL exists in the registry.
-
To update the registry entry of the Password Manager Self-Service Site URL, navigate to Generic Settings folder in the Administrative templates node and enable Specify URL path to the Password Self-Service Site setting.
-
If Password Manager Self-Service Site URL is not present in the registry, Password Manager Self-Service Site will not appear on 32 char challenge code window of OPR.
Without mobile QRcode scanner:
-
Select the Select the checkbox if you do not have the QRcode scanner and click Next. check box, and click Next.
-
On a device connected to the internet, open the Password Self-Service Site and access your account.
-
Select the Forgot My Password option.
-
Enter the challenge code that appeared on the Password Reset page of One Identity Secure Password Extension Wizard in the text box and click Next.
-
Type the response code in the Response code text box.
-
Type the new password and confirm the new password in relevant text boxes.
-
Click Next to reset the password.
For more information, see Reset Password in Active Directory.