How does the password reset via the Forgot Password link work where you have AD as the profile master? Skip to main content
https://support.okta.com/help/answers?id=9060z000000jjduqas&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Rodney PrzyborowskiRodney Przyborowski 

How does the password reset via the Forgot Password link work where you have AD as the profile master?

Paul StinigutaPaul Stiniguta (Okta, Inc.)
Hello Rodney,

It should work exactly as as an Okta mastered user, however there are a few things that need to be done:
- Delegated Authentication needs to be enabled in AD setting
- The service account you are using for AD Agent needs to have the option to "Reset user passwords and force password change at next logon"
- In Security->Authentication->Password->Active Directory Policy you need to set a rule to allow user to change password, perform self-service password reset.
If you have further questions don't hesitate to open a case with Support.

Paul Stiniguta
Technical Support Engineer
Okta Global Customer Care
Rodney PrzyborowskiRodney Przyborowski
Thank you for the answer Paul.  I do have a follow up question but do you guys prefer that we do that via Okta support or can I go ahead and continue asking here?
Dylann FezeuDylann Fezeu (Customer First Programs)
Hello Rodney,

Thanks for posting your inquiry in Okta Community Portal.

If you receive a great answer to your question(s), please help readers find it by marking it the best answer. Hover over the answer and click "Best Answer." 

Thank you,

Dylann Fezeu
Okta Help Center Team