Password Reset/Expiration FAQ

How do I get a password reset notification upon password expiration?
The password reset screen will appear when you try to log into Litmos. 

Upon clicking the login button, the password reset reminder screen will appear 7 days prior until the password has expired:


If the password has expired, the following page will be displayed:

Will I get an email notification to reset my password before it expires?
There is no email notification that is sent for password expiration because the password change enforced upon login if it has expired. 

How often does my password expire? 
The password expiration default is set to 90 days unless changed by the account owner. If the default interval is not configured to a specified interval (min = 30 days, max = 180 days), then the first time any user will be required to change his/her password will be on the 91st day after the initial.

When is the password change interval triggered? 
The password change interval is enforced from the date any user changes his/her password. 

Do I have the ability to turn off the password expiration for users? 
No there is no option to turn off the password expiration. However, for SAML and Google SSO authentication the password expiration does not come into effect. 

Am I required to reset a password if I authenticate via SSO?
No. Authenticating via SAML or Google SSO does NOT require any password resets. However, if the Admin changes your password manually in Litmos, you would be directed to the welcome page to create a password of your own.

Will I be prompted to reset my password on the Mobile App? 
If you login via the mobile app, currently, you will not be prompted to change your password but will be authenticated into the app. This is subject to change.
However, anytime you login via your browser on an iOS or android device, you will be required to change your password upon password expiration and will be required to re-enter your login with the new password before you are redirected to the Mobile app if the 'Force launch into App' setting is turned on. If your password is expiring in X days, then clicking on the "Skip" option will simply redirect you to the Mobile app if the 'Force launch into App' setting is turned on. 

Will I be required to update passwords if I am a SFDC user accessing the managed package visualforce page?
No.  If you are logging in via Oauth token in the iFrame integration, you are not subject to password expiration and resets. 

How can I reset passwords and unlock locked accounts? 
View this article to get more details on password resets and unlocking locked accounts. 

Initial/New User Password setup FAQ

Do I need to set an initial password even if I authenticate via SSO?
If you have a Litmos profile, and you're logging into that Litmos profile for the very first time by using SSO, it will route you to the welcome page.

However, as an admin, if you would like to bypass the initial password creation page the very first time the user logs in, this can be done by enabling the "Skip First Login" option. 

The "Skip First Login" option can be enabled if the users are either created via the bulk import process or via the API. 

• If you create the user via the API and you don't want them to set their own password ever you need to add the<SkipFirstLogin>true</SkipFirstLogin> item to your create user request.
• If you create the user via the bulk import process and "Skip First Login" box is checked in the last step prior to the upload, the users will not be prompted to verify their profile information and reset their password upon their first login.

Why am I being prompted for a password even though I am authenticating via SSO?
The only exception and instance in which you would be prompted to create a password when authenticating via SSO would be: 
a)  If your user is manually created in the UI because this does not skip the first login. 
b)  If the Admin changes your password manually, you would be directed to the welcome screen to create a password of your own.

Will passwords set via the API prompt an immediate reset upon first login? 
No, if the "Skip First Login" option is enabled, you will not be required to set a password upon the first login. If you create the user via the API and you don't want them to set their own password ever you need to add the<SkipFirstLogin>true</SkipFirstLogin> item to your create user request.

Cannot Login FAQ
View the following articles for login related questions. 
I can't log on. How do I reset my password?
Troubleshooting Problems and Errors - I Can't Log In

Login/Password Configuration Settings 

Only Account Owners have access to change the account password settings and policies. 

As an Account Owner, how do I access the Login/Password configuration settings?
The login settings can be accessed in the Login Settings section on the Account Profile Page.

What does the setting to "Enforce limit to not allow reuse of previous x passwords" mean?
When the users password expires, this forces the user to choose a password that is different from any of the previous x passwords used. 

What does the setting to "Sign Out User Session after x hours of inactivity" mean?
If a user session is idle for x hours, then the user will be automatically logged out of Litmos and will need to login again. 

What are the allowed configurable values for each of the Login/Password settings?
Enforce limit to not allow reuse of previous x passwords (Min = 3, Max = 10)
Passwords are valid for x days before they expire (Min = 30 days, Max = 180 days)
Sign out user session after x hours of inactivity (Min = 1 hour, Max = 24 hours)