With Redirect Authentication, how do end-users update their passwords?

We are migrating to Okta for our end-users. So far, the consensus has been that we should use redirect authentication for security and ease of use. The idea is that if Okta comes up with something better, we shouldn’t have to touch anything and we would get it all without rewriting our UI.

We can see how Okta owns and manages setting passwords in the case of forgot password and first-time password. But we are not finding documentation on how to redirect a user to Okta for them to change their password (not reset/forgot, just change it).
We were told Okta can enforce password expiration after X days, so We assume Okta has a built-in way to make the user change their password.

Any help is greatly appreciated.

Eric.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Hi there,

Currently Okta’s policies and API’s provide the option for users to reset their password. You can refer to documentation here.

If periodically you want to expire your user’s passwords and force them to reset it, you can refer to the feature here. This is Respective API call for expiring user’s passwords.