# Password recovery configuration


# Password recovery configuration

## Description

Soffid provides you the functionality that allows to the users recover their passwords. To do that, the admin user, o a user with the proper roles, must config the the password recovery parameters.

## Screen Overview

[![image-1711378217620.png](https://bookstack.soffid.com/uploads/images/gallery/2024-03/scaled-1680-/image-1711378217620.png)](https://bookstack.soffid.com/uploads/images/gallery/2024-03/image-1711378217620.png)

## Custom attributes

- **Enable email recovery**: if Yes is selected, it will allow password recovery through an e-mail sent to an authorized mailbox.
- **Enable question&amp;answer recovery**: if Yes is selected, a question and control response will be requested.
- **Enable OTP**: if Yes is selected, an OTP will be required to recover the password. That OTP depends on the OTP settings configured into the Soffid Console and the OTP devices configured for the end-user.
- **Enable SMS**: if Yes is selected, an SMS will be send to recover the password.
- **Preferred method**: in case you select two or more previous options, this drop-drown will allow you to priorize one option over the others.
- **Minimum number of filled-in questions**: indicates the minimum number of user questions that must be have answered in the end-user's profile to can use this recover password method.
- **Questions to answer to unlock**: indicates the number of questions that must be formulated to the end-user to reset his password.
- **Numer to answer to unlock**: indicates the number of answers that must be answered by the end-user to reset his password.
- **Allow to unlock account and keep the same password**: allows to administrator user to unlock an end-user's account and keep the same password.
- **Enforce fill-in questions:** allow on each access Soffid to check if the questions are answered. In case the questions have not been not answered, Soffid will display a window with the questions to answer or to config to the end-user depending on that value. 
    - **Disabled**: allows you to disable that functionality.
    - **Required**: if this option is selected, the system will check if the user questions are answered correctly.  
        If the user have not a required number of questions defined or he have not answered all his questions, the system will show the retrieve password questions page.
    - **Optional**: when this option is selected, the system will check the user questions but it will not show the retrieve password questions page if the user questions does not meet the configuration parameters.
- **Email subject**
- **Email body**
- **URL for SMS service**
- **HTTP method for SMS**
- **HTTP body for SMS**
- **HTTP headers for SMS**
- **Response must contain**
- **User attribute to store phone number:** user object attribute defined on the Metadata page to save the phone number.

## Actions

<table id="bkmrk-add-attribute-allows" style="width: 99.9409%;"><tbody><tr><td style="width: 16.2867%;">**Confirm changes**

</td><td style="width: 83.6836%;">Allows you to save the data of password recovery configuration. To save the data it will be mandatory to fill in the required fields.

</td></tr></tbody></table>

# Configure Default questions

## Description

Soffid allows to the administrator user, o the user with the proper roles, to configure the default questions that will be displayed to the end-users. Those questions will be the default questions, the end-users could change them and configure other questions.

To config the question&amp;answer recovery, the adminitrator-user needs to configure some parameters at the "Password recovery questions" tab:

- Enable question&amp;answer recovery
- Minimum number of filled-in questions
- Questions to answer to unlock
- Number to answer to unlock

Once, question&amp;answer recovery parameters are configured, the end-users must complete the answers in the Self-service portal in order to user the recover password method when it will be necessary.

## Screen Overview

### Default questions

[![image-1638285896779.png](https://bookstack.soffid.com/uploads/images/gallery/2021-11/scaled-1680-/image-1638285896779.png)](https://bookstack.soffid.com/uploads/images/gallery/2021-11/image-1638285896779.png)

### Parameters

[![image-1639393852036.png](https://bookstack.soffid.com/uploads/images/gallery/2021-12/scaled-1680-/image-1639393852036.png)](https://bookstack.soffid.com/uploads/images/gallery/2021-12/image-1639393852036.png)

## Actions

<table id="bkmrk-add-attribute-allows"><tbody><tr><td style="width: 69px;">**Add**

</td><td style="width: 740px;">Allows you to add a new question to the question list.

First of all you need to click the add button (+), then Soffid will add a new row to write the new question. You must confirm the changes by clickin on the "Confirm changes" button.

</td></tr><tr><td style="width: 69px;">**Delete**

</td><td style="width: 740px;">Allows you to delete one by one the default questions.

You need to click the subtraction icon at the end of the line that you want to delete.

</td></tr></tbody></table>
Add	Allows you to add a new question to the question list. First of all you need to click the add button (+), then Soffid will add a new row to write the new question. You must confirm the changes by clickin on the "Confirm changes" button.
Delete	Allows you to delete one by one the default questions. You need to click the subtraction icon at the end of the line that you want to delete.