Copy/Paste Prevention during password Reset
It goes without saying that a password is supposed to remain a secret. Another point to remember is that during an operation like a password reset, passwords tend to be vulnerable. To ensure that password resets happen efficiently and accurately, it is strongly recommended to disable the copy and paste option in the password fields.
How does disabling the ability to copy and paste ensure efficient password resets?
Generally, there are two fields involved while resetting passwords: New password and Confirm new password.
Most organizations tend to use password masking (replacing the characters in a password with bullet points or asterisks) to prevent over-the-shoulder snooping. While this is beneficial, if it's coupled with the ability to copy and paste passwords from one field to another, it could become disastrous.
Imagine a user resetting their password. They have a password in mind and type it out in the first field. Since the password is masked, the user is not able to view the spelling mistake they've made while typing the password. Now if they copy and paste the same password into the Confirm new password field, they might not realize that the password they had in mind was not the password they actually created for their account. As a result, they might end up locked out of their account the next time they try to log in.
Prevent users from copying and pasting passwords with ADSelfService Plus
ManageEngine ADSelfService Plus provides a reliable, easy-to-implement solution for efficient password resets.
By allowing you to block your users from copying and pasting values within the password fields, it ensures that password resets happen systematically, which in turn eliminates account lockouts.
So, how do you do that in ADSelfService Plus?
Steps to follow:
- Log in to the ADSelfService Plus admin console with your credentials.
- Navigate to Configuration > Self-Service > Policy Configuration.
- Click Advanced and browse to the Reset & Unlock tab.
- Check Prevent a user from using 'Copy & Paste' in the password fields.
- Click OK to save the settings.
That's it! You've now blocked the copy and paste option for your users' passwords!
New to ADSelfService Plus?
Related Articles
Change the default ADSelfService Plus admin password to improve security
Description By default, ADSelfService Plus has default admin account. This account has all the privileges and access to the ADSelfService Plus admin console. The default admin account uses the word admin as the username and the password. It is highly ...Display custom messages at Reset Password/Unlock Account pages
Description Reset Password/Unlock Account process in ADSelfService Plus is self-descriptive and easy to use. However, if you want to inform end-users of any specific details or change the look and feel of the pages, you can do so manually. This gives ...Modify the password policy requirements text displayed on screen in ADSelfService Plus
Description ADSelfService Plus, by default, displays the password policy requirements (domain or fine-grained password policies) of a user in the change password and reset password screen. If you prefer to customize the password policy messages to ...Migrating from ADSelfService Plus 32-bit to ADSelfService Plus 64-bit
This article will help you migrate from ADSelfService Plus 32-bit version to the 64-bit version. Before you begin 32-bit to 64-bit migration is possible only between the same builds. For example, you cannot migrate from a 32-bit version of build 5310 ...How to prevent concurrent logins for a user in ADSelfService Plus
Solution Concurrent logins can lead to the use of valid credentials by illegitimate personnel at the same time as the legitimate user to authenticate to the network. This could lead to multiple security issues within the organization like misuse of ...