Password Change Rollback

Products Recovery for Active Directory Ideas
, ,
1

What is a one sentence summary of your feature request?

Implement the ability to rollback password changes for users

Please describe your idea in detail. What is your problem, why do you feel this idea is the best solution, etc.

Sometimes when a user changes their password they may forget it and require an admin to reset their password for them. This can be rectified by having a tool to rollback the password change to their previously used password.

Another use case for this would be if a password change occurred that may have been from a malicious actor. Rolling back the password change they made could prevent them from accessing more resources and provide critical time to triage and respond to the threat.

How do you currently solve the challenges you have by not having this feature?

There is no way to handle this today besides having an administrator reset the password.

2

I can see the need for something like this and it is something we plan to investigate. Rolling back a password isn’t the same as rolling back a regular Active Directory attribute. Marking this as planned as our development team will investigate it in the future.