Enforce Password History Policy Includes Current Password
Sep 4, 2025
Administration
Okta Classic Engine
Okta Identity Engine
Overview
This knowledge article aims to clarify the behavior of the Enforce password history for the last X Passwords setting in Password Policy.
Applies To
- Password Policy
- Enforce Password History
Solution
The user's current password is considered when enforcing the password history requirement in the password policy.
Consider the following example:
If Enforce password history for last X passwords is set to "last 3 passwords," a user can reuse their original password on the fourth password reset.
