User Expiration Date

Icon

Password changes do not impact RemoteAuth or LDAP users.

Default User Expiration

The DLL will look for a status specific user expiration customization key to determine the number of days to append to the current date to set as the user's expiration date.  

For example:

UserExpirationFacultyThe number of days to add to the current date before Faculty customers expire.
UserExpirationGraduateThe number of days to add to the current date before Graduate customers expire.
UserExpirationStaffThe number of days to add to the current date before Staff customers expire.
UserExpirationUndergraduateThe number of days to add to the current date before Undergraduate customers expire.

 

Beginning in version 9.0, if the status specific user expiration key does not exist, the DLL will look at a new global user expiration customization key, UserExpiration, to determine the number of days to append to the current date for the user's expiration date.

UserExpirationThe number of days to add to the current date for the expiration date. Additional keys can be created for other statuses.

If the customization key that is used is set to a blank value, the DLL will not set the user's expiration date. If the customization keys are not found or is not a valid value (i.e. integer or empty string), the value will be defaulted to 365 days in the future.

Changing The Default Expiration Date

A PasswordChangedDate column in the Users table allows you to modify the expiration date through customization keys.

UserPasswordExpirationEnabledAllows you to turn-on the password expiration capabilities.
UserPasswordExpirationDaysThe number of days a password will last before expiring. Default 180 days.

Password expiration notifications can be implemented so they notify users on the Web Interface Status Line of the ChangePassword.html page if they have been impacted by any expiration date criteria set in the database. 

SLUserExpiredDisplays a "Your Password has expired. Please update your password" notice to users if they attempt to logon with an expired password.
SLPasswordDoesNotMeetHistoryRequirementsDisplays a "Your new password must be different than the previous password" notice to users who attempt to reset their passwords to the same value as their previous password.

The ChangePassword.html form now displays immediately after a user logs in if a password change is required. To avoid losing the session state & information if entering ILLiad via OpenURL, enter the <#FORMSTATE> tag on the ChangePassword.html.