Product documentation Docs
    • English
    • Deutsch
    • 日本語
    • 한국어
    • Français
  • More Sites
    • Now Community
    • Developer Site
    • Knowledge Base
    • Product Information
    • ServiceNow.com
    • Training
    • Customer Success Center
    • ServiceNow Support Videos
  • Log in

Product documentation

  • Home
How search works:
  • Punctuation and capital letters are ignored
  • Special characters like underscores (_) are removed
  • Known synonyms are applied
  • The most relevant topics (based on weighting and matching to search terms) are listed first in search results
Topics are ranked in search results by how closely they match your search terms
  • A match on the entire phrase you typed
  • A match on part of the phrase you typed
  • A match on ALL of the terms in the phrase you typed
  • A match on ANY of the terms in the phrase you typed

Note: Matches in titles are always highly ranked.

  • Release version
    Table of Contents
    • Now Platform capabilities
Table of Contents
Choose your release version
    Home Orlando Now Platform Capabilities Now Platform capabilities Password Reset application Password Reset admin guide Configure your Password Reset process Credential stores for Password Reset Configure the connection to a credential store for the Password Reset processes

    Configure the connection to a credential store for the Password Reset processes

    • Save as PDF Selected topic Topic & subtopics All topics in contents
    • Unsubscribe Log in to subscribe to topics and get notified when content changes.
    • Share this page

    Configure the connection to a credential store for the Password Reset processes

    You create a Password Reset credential store record to configure access to your credential store server while a user is changing or resetting a password. In addition to host connection information, you can specify the password hints that users should see, restrictions on password reuse, the allowed number of failed reset attempts, and other settings.

    About this task

    For an AD credential store, skip this procedure and instead follow the instructions in Integrate Password Reset with your Active Directory service. The Password Reset Windows Application supports only AD credential stores.

    Procedure

    1. Navigate to Password Reset > Credential Stores.
    2. Select one of the following sample credential stores:
      • Local ServiceNow Instance credential store.
      • Remote (SOAP) ServiceNow credential store (installed with the Orchestration Add-on).
    3. Enter a unique and meaningful Name and Description, and then fill in the form.
      Type Type of credential store that you are connecting to. A ServiceNow credential store type is a template that provides the required set of capabilities for a particular kind of credential store. Credential stores inherit the functionality of the credential store type.
      Note: For an AD credential store, skip this procedure and see Integrate Password Reset with your Active Directory service. The Password Reset Windows Application supports only AD credential stores.
      Auto-generate password Script include that generates a temporary password for use during the reset process.

      If you select the Enforce history policy check box, then you must specify a value for Auto-generate password.

      Enforce history policy Appears only if you select a credential store Type of AD Credential Store or Local ServiceNow Instance. For information on configuring the setting for an AD credential store, see Configure the connection to an AD credential store.

      Select the Enforce history policy check box to ensure that users do not reuse passwords. For example, you might configure the history policy to not allow the user to reuse any of the previous 10 passwords. Follow this procedure:

      1. Select the Enforce history policy check box.
      2. In the Password Reset Credential Store Parameters related list, create a password_history_limit parameter.
      3. Set the value of the parameter to the number of previous passwords that cannot be used (maximum 10). The default value of 0 (zero) enables use of any previous password.
      Hostname URL or IP address of the credential store.
      User account lookup Script include that maps the user ServiceNow platform ID to the user credential store ID. A default script, PwdDefaultUserAccountLookup, returns the user ServiceNow platform user name.
      Password rule hint Specify the text that appears on the password reset page to help the user to create a password that meets all requirements. The Password rule script enforces the requirements.
      Note: The Password Reset Windows Application supports newline characters in the hint. Other formatting is not supported (bold, underline, hyperlink, and so on).
      Password rule Specify the client script that validates the new password that the user enters. The script is invoked when the user enters a new password and clicks Password Reset. You can use the script to enforce password strength/complexity requirements.
      Enable Password Strength Select the check box to:
      • Display the text box for the Strength rule script so you can update the script.
      • Display the graphical Password Strength bar to the user while the user changes or resets the password.
      Note: The Password Reset Windows Application does not support Password Strength.
      Strength rule This text box appears only if you select Enable Password Strength.

      Specify the client script that calculates the strength/complexity of the password that the user enters. The script is invoked when the user begins to enter a new password during the reset process.

      Default settings:
      • Selected for local ServiceNow credential stores
      • Not selected for other credential stores
      Note:

      To guide the user during the reset process, the system displays a graphical bar labeled Password Strength under the New password field.

      Password strength indicator
      Note: The Password Reset Windows Application does not support Password Strength.
    4. Click Submit.
    5. If you use the Local ServiceNow Instance credential store and you selected the Enforce history policy check box, then follow these steps:
      1. Open the Password Reset process that is associated with the credential store: Password Reset > Processes.
      2. On the Password Reset Details tab of the Password Reset Process form, clear the Auto-generate password check box and then save the process definition.
    6. Test the connection to the credential store.
    Related tasks
    • Configure the required strength for passwords

    Tags:

    Feedback
    On this page

    Previous topic

    Next topic

    • Contact Us
    • Careers
    • Terms of Use
    • Privacy Statement
    • Sitemap
    • © ServiceNow. All rights reserved.

    Release version
    Choose your release version

      Configure the connection to a credential store for the Password Reset processes

      • Save as PDF Selected topic Topic & subtopics All topics in contents
      • Unsubscribe Log in to subscribe to topics and get notified when content changes.
      • Share this page

      Configure the connection to a credential store for the Password Reset processes

      You create a Password Reset credential store record to configure access to your credential store server while a user is changing or resetting a password. In addition to host connection information, you can specify the password hints that users should see, restrictions on password reuse, the allowed number of failed reset attempts, and other settings.

      About this task

      For an AD credential store, skip this procedure and instead follow the instructions in Integrate Password Reset with your Active Directory service. The Password Reset Windows Application supports only AD credential stores.

      Procedure

      1. Navigate to Password Reset > Credential Stores.
      2. Select one of the following sample credential stores:
        • Local ServiceNow Instance credential store.
        • Remote (SOAP) ServiceNow credential store (installed with the Orchestration Add-on).
      3. Enter a unique and meaningful Name and Description, and then fill in the form.
        Type Type of credential store that you are connecting to. A ServiceNow credential store type is a template that provides the required set of capabilities for a particular kind of credential store. Credential stores inherit the functionality of the credential store type.
        Note: For an AD credential store, skip this procedure and see Integrate Password Reset with your Active Directory service. The Password Reset Windows Application supports only AD credential stores.
        Auto-generate password Script include that generates a temporary password for use during the reset process.

        If you select the Enforce history policy check box, then you must specify a value for Auto-generate password.

        Enforce history policy Appears only if you select a credential store Type of AD Credential Store or Local ServiceNow Instance. For information on configuring the setting for an AD credential store, see Configure the connection to an AD credential store.

        Select the Enforce history policy check box to ensure that users do not reuse passwords. For example, you might configure the history policy to not allow the user to reuse any of the previous 10 passwords. Follow this procedure:

        1. Select the Enforce history policy check box.
        2. In the Password Reset Credential Store Parameters related list, create a password_history_limit parameter.
        3. Set the value of the parameter to the number of previous passwords that cannot be used (maximum 10). The default value of 0 (zero) enables use of any previous password.
        Hostname URL or IP address of the credential store.
        User account lookup Script include that maps the user ServiceNow platform ID to the user credential store ID. A default script, PwdDefaultUserAccountLookup, returns the user ServiceNow platform user name.
        Password rule hint Specify the text that appears on the password reset page to help the user to create a password that meets all requirements. The Password rule script enforces the requirements.
        Note: The Password Reset Windows Application supports newline characters in the hint. Other formatting is not supported (bold, underline, hyperlink, and so on).
        Password rule Specify the client script that validates the new password that the user enters. The script is invoked when the user enters a new password and clicks Password Reset. You can use the script to enforce password strength/complexity requirements.
        Enable Password Strength Select the check box to:
        • Display the text box for the Strength rule script so you can update the script.
        • Display the graphical Password Strength bar to the user while the user changes or resets the password.
        Note: The Password Reset Windows Application does not support Password Strength.
        Strength rule This text box appears only if you select Enable Password Strength.

        Specify the client script that calculates the strength/complexity of the password that the user enters. The script is invoked when the user begins to enter a new password during the reset process.

        Default settings:
        • Selected for local ServiceNow credential stores
        • Not selected for other credential stores
        Note:

        To guide the user during the reset process, the system displays a graphical bar labeled Password Strength under the New password field.

        Password strength indicator
        Note: The Password Reset Windows Application does not support Password Strength.
      4. Click Submit.
      5. If you use the Local ServiceNow Instance credential store and you selected the Enforce history policy check box, then follow these steps:
        1. Open the Password Reset process that is associated with the credential store: Password Reset > Processes.
        2. On the Password Reset Details tab of the Password Reset Process form, clear the Auto-generate password check box and then save the process definition.
      6. Test the connection to the credential store.
      Related tasks
      • Configure the required strength for passwords

      Tags:

      Feedback

          Share this page

          Got it! Feel free to add a comment
          To share your product suggestions, visit the Idea Portal.
          Please let us know how to improve this content

          Check any that apply

          To share your product suggestions, visit the Idea Portal.
          Confirm

          We were unable to find "Coaching" in Jakarta. Would you like to search instead?

          No Yes
          • Contact Us
          • Careers
          • Terms of Use
          • Privacy Statement
          • Sitemap
          • © ServiceNow. All rights reserved.

          Subscribe Subscribed Unsubscribe Last updated: Tags: January February March April May June July August September October November December No Results Found Versions Search preferences successfully updated My release version successfully updated My release version successfully deleted An error has occurred. Please try again later. You have been unsubscribed from all topics. You are now subscribed to and will receive notifications if any changes are made to this page. You have been unsubscribed from this content Thank you for your feedback. Form temporarily unavailable. Please try again or contact  docfeedback@servicenow.com  to submit your comments. The topic you requested does not exist in the release. You were redirected to a related topic instead. The available release versions for this topic are listed There is no specific version for this documentation. Explore products Click to go to the page. Release notes and upgrades Click to open the dropdown menu. Delete Remove No selected version Reset This field is required You are already subscribed to this topic Attach screenshot The file you uploaded exceeds the allowed file size of 20MB. Please try again with a smaller file. Please complete the reCAPTCHA step to attach a screenshot
          Log in to personalize your search results and subscribe to topics
          No, thanks Login