Static Password Change
For a change of the static password, the following form fields must be used on the Static Password Change page and posted to the User Self-Management Website servlet (action="changebackendpassword"):
| Form field name | Visible label | Description |
|---|---|---|
| username | User Name | Required. The user name for logging on to User Self-Management Website. The maximum length is 255 characters. |
| current-password | Current Static Password |
Required. The current static password. The maximum length is 128 characters. |
| new-password | New Static Password |
Required. The new static password. The maximum length is 128 characters. |
| confirm-new-password | Confirm New Static Password |
Required. The new static password. The maximum length is 128 characters. |
| pin | PIN |
Optional. The user's PIN. |
| digipass-response | Digipass Response | Optional. The response as calculated by the authenticator. |
| commit | Change | Required. The button to submit data entered by the user to OneSpan Authentication Server. |
| replay_token | <hidden> | Required. Internally used form field to prevent re-transmission of form data. |
Change static password process
- The user navigates to the Static Password Change page.
- The user enters their user name.
- The user enters the current and the new static password.
-
If the user has a Challenge/Response authenticator, or if they use Virtual Mobile Authenticator, the following applies:
- The Digipass Response field must remain blank for the user to receive a challenge or a text message.
- The user may need to enter a keyword instead of or in addition to the static password, according to the instructions provided.
- If the authenticator is PIN-enabled, the user must enter the PIN.
- The user clicks Change.