The Okta function to mass-reset passwords is currently only available for AD-managed users. For Okta-managed users, a workaround is available using the Rockstar plugin and Postman.
- Password Reset
- Rockstar
- Postman
Only orgs using Active Directory (AD) can reset multiple user passwords. When resetting multiple AD users's passwords, an Account Password Reset email containing an auto-generated password is sent to the specified email addresses. A built-in bulk password reset option for Okta-sourced users is not available.
-
Set up Postman for the tenant and install the Users (Okta API) collection.
-
Download the Rockstar browser extension.
-
Navigate to Directory > People and click Export Users in the Rockstar overlay.
-
In the Columns to export, choose only User ID and disable the rest. Additionally, filtering users at this stage is necessary if the intention is to reset the passwords of only a select group of users.
-
Click Export and wait for the file to be generated.
-
In the Postman collections, navigate to Users (Okta API) > Lifecycle Operations, right-click on Reset Password, and select Duplicate.
-
In the newly opened tab, edit the request URL to
{{url}}/api/v1/users/{{User ID}}/lifecycle/reset_password?sendEmail=trueand click Save. -
In the bottom-right corner, click on Runner.
-
Drag and drop the Users (Okta API) collection to the newly opened tab, then click on Deselect All and select Reset Password Copy.
-
In the panel on the right, click Select File and choose the CSV exported with Rockstar in steps 3-5.
-
Click Run Users (Okta API).
Postman will then run the Reset Password API call for all users whose IDs are in the CSV file. The users will also receive an email to reset their passwords.
NOTE: Okta did not create this extension. It is an unofficial extension created and supported by the community. If the extension is not working correctly, Okta Support cannot troubleshoot it. The JavaScript source is on GitHub; an issue or a pull request can be opened.
