This article provides instructions to find when a user's password is set to expire. This information is available if a Password Age is configured in the password policy.

• Reporting
• User Management

To determine a user's password expiration date, use the Okta Password Health report.

1. Navigate to the Admin Console.

2. Go to Reports > Reports.

3. Click Okta Password Health. This report contains the following columns: User, Login, Status, Activation, Auth source, Last Login, and Last Password Change.

3. Locate the user in the report and review the date in the Last Password Change column.

4. Calculate the expiration date by adding the number of days specified in the Password Policy's "Password Age" setting to the date listed in Last Password Change.

NOTE: Passwords for users whose authentication is delegated to Active Directory (AD) or Lightweight Directory Access Protocol (LDAP) are managed by that directory service, not by Okta.

Related References

• Configure the Password Authenticator
• Okta Password Health Report