Skip to main content

2026-05-20 New feature: clear and set passwords

2026-05-20 New feature: clear and set passwords

The new feature

From now on, passwords for disabled accounts will be cleared and we will set them up again when the account is reactivated.

This new feature consists of two steps:

  • Clearing the password in Soffid when an account is no longer active.
  • Resetting the password in Soffid when an account is reactivated.

Bear in mind

To understand this behaviour, it is necessary to bear in mind several concepts within Soffid:

  • The password is updated in Soffid within the user’s password domain, and the password domain is responsible for replicating the new password across all of the user’s accounts belonging to the same password domain.
  • The password is cleared only for the account, not for the user's password domain.
  • The cleared or set up password synchronisation to the end system depends on Soffid’s. synchronisation engine and the agent’s configuration; the engine should be set up to automatic, the agent sep up to write mode and enabled, and there should be no preUpdatePassword trigger to block the change.
  • When the account is reactivated, the password can be set up again because it exists in the password domain.

How to configure it?

The following components must be installed:

  • Console 4.0.57 (or higher)
  • Syncserver 4.0.35 (or higher)

From these versions onwards, this new feature will run automatically..

Let's look at an example

Let’s look at an example with an agent connected to a small database.

We have a user with accounts on several systems.

First, we set the password to Dummy01.


We confirm that it has been updated on the end system

Now we disable the account and confirm that it has been cleared


Finally, we reactivate it and confirm that it has been reset correctly

Back to top