A potential internal help desk/service desk call driver relating to the Password Manager Web Interface has been discovered on January 10th, 2020. The latest release of Password Manager 5.9.2 has the potential to increase customer helpdesk calls and may cause frustration when Password Manager users attempt to change passwords.
How does this affect me?
When attempting to change or reset a user password on the PM user website, confusion could occur when viewing the complexity rule checklist.
Password Manager determines the most secure password policy, reviewing both Windows Default Domain Password Policy as well as the Password Policy set within Password Manager. Password Manager then enforces the combined, most secure policy. During the password change activity, the password strength meter and complexity rule checklist may incorrectly represent a password which has met the required complexity. However, the next button is not available to continue the process and no explanation is provided.
The user interface in Password Manager 5.9.2 is incorrectly requiring that passwords meet 4 out of the 4 requirements, rather than only 3 of 4 in some situations.
Given the possible user frustration and potential impact on the help desk/service desk, we have chosen to remove Password Manager 5.9.2 from the Support Portal and are recommending to all customers that they do not install version 5.9.2. We will be releasing Password Manager v 5.9.3 as soon as possible which will address the user interface issue, clearly showing an accurate password strength meter and complexity rule checklist.
If you have already upgraded your production Password Manager installation to 5.9.2 or have additional questions, please feel free to contact support by opening up a service request.