Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Example: The default self-service Password Reset process

Example: The default self-service Password Reset process

The default self-service Password Reset process enables a user to reset the password without assistance from service desk agents.

The default self-service password reset flow

  1. If a user does not remember the password, the user can click the Forgot Password? link on the login screen.
    Forgot password
  2. The Password Reset application starts. On the Identity page, the user identifies himself or herself by entering a Username.
    The user provides a username on the Identity page
  3. On the Verify page, the user proves that they are the person who is associated with the username. In this example, the user enters the email address that is associated with the user profile. The admin can configure a different verification method or can require additional verifications, for example, a personal question that only the user can answer.
    The user provides verification information on the Verify page
  4. The Reset page tells the user to check email for instructions.
    Confirm password
  5. The user opens the email and clicks the here link to reset the password. The link is valid for a period that you specify (use the password_reset.request.expiry property).
    Email
  6. The Reset Password page guides the user to reset the password.
    Password guidelines on the Reset Password page
The default self-service Password Reset process (com.glideapp.password_reset) defines:
  • The URI that specifies where users are redirected when they click Forgot Password?. By default this value is /$pwd_reset.do?sysparm_url=ss_default, which is the same value used in the glide.security.password_reset.uri property. In previous releases, this value was set to /reset_password.do.
  • The Enable Password Reset URL option, which specifies that the user should receive an email with a link to reset their password after they click Forgot Password?.
  • The Personal Data - Enter Email Address verification flow that specifies the three-step password reset flow.

See Configure your Password Reset process for instructions on accessing this form and configuring the fields.

Note:
  • This feature works for locally authenticated users who enter the username and password specified in their user record. Users logging in to the instance via an SSO solution or an LDAP integration cannot reset passwords with self-service Password Reset.
  • The end user must enable and configure notification preferences. See Subscription-based notifications. Administrators can modify the email that is sent to the end user.