Reset an individual user password
AD mastered users in a Delegated Authentication environment
When a password is reset, the original password does not expire in AD. If the user remembers their original AD password, they can use it to sign in despite the password reset.
If the Temporary Password option for an account is used with the Password never expires option enabled, the user is not prompted to change their password after entering the temporary password.
To deactivate user accounts temporarily, use the Suspend procedure. See Suspend or unsuspend users. If you set an AD-managed account into Password Reset status, the user can still access Okta Mobile by using PIN or FaceID authentication.
- In the Admin Console, go to Directory > People.
- Click Reset Passwords.
- Optional. Filter the list by selecting Locked out, Expired token, or All.
- Select a user and click Reset Password.
- Click Reset Passwords in the Reset Password dialog box.