Login  
Hello there!

Need Help? We are right here!

Support Icon
miniOrange Email Support
success

Thanks for your Enquiry. Our team will soon reach out to you.

If you don't hear from us within 24 hours, please feel free to send a follow-up email to info@xecurify.com

Search Results:

×

Configure Password Recovery

[This will be released soon]

This guide explains how to configure password recovery options in miniOrange using Email, Phone, and Two-Factor Authentication (2FA). It covers enabling multiple recovery methods such as reset links and OTP-based verification, allowing administrators to provide flexible and secure account recovery options. The guide also walks through the end-user password reset experience, including the Email, Phone/SMS, and 2FA-based recovery flows, ensuring users can regain access to their accounts securely.

Additionally, it highlights safeguards such as rate limiting for repeated attempts and enforcement of password policies during reset, helping organizations maintain strong security while delivering a seamless user experience.


1. Enable Password Recovery Settings

  • Navigate to Product Settings >> Security >> Reset Password.
  • This section allows you to configure how users can recover or reset their passwords.
    • global setting

  • There are three password recovery methods available:
    • Password Recovery via Email
    • Password Recovery via Phone
    • Password Recovery via 2FA
    Security Reset Password

  • Select a recovery method to view and configure the available options for that method.
  • Password Recovery via Email

    Enable one or more of the following options:

    • Send Password Reset Link to Registered Email: Enabling this option will send a password reset link to the email address associated with the account.
    • Send Password Reset Link to Alternate Email: Enabling this option will send a password reset link to an alternate email address provided during account setup.
    • Send OTP to Registered Email: Enabling this option will send a One-Time Password (OTP) to the email address associated with the account, which can be used to reset the password.
    • Send OTP to Alternate Email: Enabling this option will send a One-Time Password (OTP) to the alternate email address, which can be used to reset the password.
  • Password Recovery via Phone

    Enable one or more of the following options:

    • Send OTP to Registered Phone: Enabling this option will send a One-Time Password (OTP) to the registered phone number, which can be used to reset the password.
    • Send Password Reset Link to Registered Phone: Enabling this option will send a password reset link to the phone number associated with the account via SMS.
    Password Recovery via Phone

  • Password Recovery via 2FA

    Enable password reset using multi-factor authentication:

    • Reset via Active 2FA: You will need to authenticate using their active 2FA method to reset their password.
      • Password Recovery via 2FA

    • Reset via Configured 2FA: You will need to authenticate using their configured 2FA method to reset their password.
      • Configured 2FA

2. End-user password recovery process

  • When all the above password recovery options are enabled, you will see the following reset process:
  • When the user visits Login page and clicks Forgot Password, the Forgot Password page will open.
    • End User Password Recovery Process

  • You will be guided through a unified password reset experience with three recovery tabs:
    • Email Reset
    • Phone/SMS Reset
    • Two-Factor Authentication

  • Select the Email Reset tab on the Forgot Password page.
    • Email Reset tab

  • Choose one of the available email-based recovery options:
    • Send Password Reset Link to Registered Email
    • Send OTP to Registered Email
    • Send Password Reset Link to Alternate Email
    • Send OTP to Alternate Email
  • Enter the username or email address and click Continue.
  • The following screen is shown based on the selected option.
  • Based on the selected recovery method:
    • Send Password Reset Link to Registered/Alternate Email: After clicking Continue, a confirmation screen indicates that a password reset link has been sent to the registered or alternate email address. The user opens the email and clicks the Reset Password link to proceed.
      • Reset link sent confirmation

    • Send OTP to Registered/Alternate Email: After clicking Continue, the user is redirected to an OTP verification screen where the 6-digit OTP sent to the registered or alternate email must be entered to continue.
      • OTP verification for email reset

    • To prevent misuse, a warning message is displayed if multiple reset attempts are made within a short time.
  • Select the Phone/SMS Reset tab on the Forgot Password page.
  • If Enable Login with Phone Number is enabled, the user is prompted to enter their registered phone number.
    • Phone reset link

  • If Enable Login with Phone Number is disabled, the user is prompted to enter their username or email address.
    • Phone OTP flow

  • Choose one of the available phone-based recovery options:
    • Send Password Reset Link to Registered Phone
    • Send OTP to Registered Phone
  • Click Continue to proceed.
  • Based on the selected recovery option:
    • Send Password Reset Link to Registered Phone:

      After clicking Continue, a confirmation screen indicates that a password reset link has been sent to the user's registered phone number via SMS. The user opens the message and clicks the Reset Password link to continue.

      2FA active method

    • Send OTP to Registered Phone:

      After clicking Continue, the user is redirected to an OTP verification screen where the OTP sent to the registered phone number must be entered to proceed.

      2FA configured method

  • Select the Two-Factor Authentication tab on the Forgot Password page.
  • When Active 2FA method is selected from product settings:
    • Active 2FA method on Forgot Password

  • When Configured 2FA method is selected from product settings:
    • Configured 2FA method on Forgot Password

  • Enter the username or email address and click Continue.
  • Choose from the following 2FA methods to proceed:
    • Choose 2FA method for password reset

  • Authy Authenticator.
    • Authy Authenticator

  • Display Token.
    • Display Token

  • FIDO2 (Biometric).
    • FIDO2 Biometric

  • Google Authenticator.
    • Google Authenticator

  • Grid Pattern.
    • Grid Pattern

  • Microsoft Authenticator.
    • Microsoft Authenticator

  • miniOrange QR Verify.
    • miniOrange QR Verify

  • miniOrange Push.
    • miniOrange Push

  • Security Questions.
    • Security Questions

  • OTP over SMS or Email.
    • OTP over SMS or Email

  • miniOrange OTP.
    • miniOrange OTP

  • Follow the on-screen instructions and complete identity verification using the selected 2FA method.
  • After successful verification, the Set New Password screen is displayed.
    • Set new password

  • While entering the new password, the configured password policy requirements are shown and must be met.
    • Enter new password with policy

  • Click Reset Password to update the password.
  • A confirmation screen indicates that the password has been reset successfully.
    • Password reset success



Want To Schedule A Demo?

Request a Demo
  



Our Other Identity & Access Management Products

Single Sign-On

Seamless login for workforce and customer identity to cloud or on-premise apps

Learn more

Multi-factor Authentication

Secure access for identities with an additional layer of authentication

Learn more

Adaptive Authentication

Block or grant user access based on IP, Device, Time & Location

Learn more

Lifecycle Management

Manage & automate user provisioning and deprovisioning to apps

Learn More