# 2026-05-20 New feature: clear and set passwords

### The new feature

<p class="callout info">From now on, **passwords** for **disabled accounts** will be **cleared** and we will **set them up again** when the **account is reactivated**.</p>

This new feature consists of two steps:

- Clearing the password in Soffid when an account is no longer active.
- Resetting the password in Soffid when an account is reactivated.

### Bear in mind

To understand this behaviour, it is necessary to bear in mind several concepts within Soffid:

- The password is updated in Soffid within the **user’s password domain**, and the password domain is responsible for replicating the new password across all of the user’s accounts belonging to the same password domain.
- The password is **cleared only for the account**, not for the user's password domain.
- The cleared or set up password **synchronisation** to the end system depends on Soffid’s. **synchronisation engine** and the **agent’s configuration**; the engine should be set up to automatic, the agent sep up to write mode and enabled, and there should be no preUpdatePassword trigger to block the change.
- When the account is reactivated, the password can be set up again because it exists in the password domain.

### How to configure it?

The following **components** must be installed:

- Console 4.0.57 (or higher)
- Syncserver 4.0.35 (or higher)

From these versions onwards, this new feature will run automatically..

### Let's look at an example

Let’s look at an example with the agent **app-demo** connected to a small database.

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/M8EcOKqgW4AyUZSP-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/M8EcOKqgW4AyUZSP-image.png)

We have the user **david\_wilson** with accounts on several systems, one of them app-demo.

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/S70gAIANPC3mT38l-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/S70gAIANPC3mT38l-image.png)

First, we set the password to **Dummy01.**

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/2jnOFq1zitRuk9Q4-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/2jnOFq1zitRuk9Q4-image.png)

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/mqIzYqn2SLpfA1P7-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/mqIzYqn2SLpfA1P7-image.png)

  
We confirm that the **password** has been updated directly on the end system (the database).

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/mJjhWp8Eo69ygqSr-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/mJjhWp8Eo69ygqSr-image.png)

Now we **disable** the **account** and confirm that the **password** has been **cleared**.

[![image.png](https://bookstack.soffid.com/uploads/images/gallery/2026-05/scaled-1680-/0D1ai1K63hjdl8AH-image.png)](https://bookstack.soffid.com/uploads/images/gallery/2026-05/0D1ai1K63hjdl8AH-image.png)

TODO

Finally, we reactivate it and confirm that it has been reset correctly

TODO