December 6, 2023 - User administrator can no longer set password for other users

system · March 17, 2025, 8:46am

Change Header

Change Type: Announcement
Product area: Platform services
Component: Administration

Technical details

Build artifact: cumulocity

Change Description

As announced earlier, see the release notes for release 10.17, to improve security, from a future version, user administrators will no longer be able to explicitly set passwords or email addresses for other users in the tenant. This change prevents that an attacker could have access to all users, in case the administrator account was compromised. Note that the administrator will still have the option to force the user to reset the password on the next login or disable the user.

Topic	Replies	Views
December 6, 2023 - Administrators cannot change passwords for other users Platform services authentication , platform-services , Feature	0	March 17, 2025
July 12, 2024 - Remove the ability to explicitly set a password for a device user Platform services authentication , platform-services , Announcement	0	March 17, 2025
February 6, 2025 - Improved password setup process for new users Platform services platform-services , administration , Feature	2	March 17, 2025
December 20, 2023 - Improved change password behavior Platform services authentication , platform-services , Improvement	0	March 17, 2025
August 1, 2024 - Reset password on next login option is now the default if Password reset link as email is deselected Platform services authentication , platform-services , Improvement	0	March 17, 2025

December 6, 2023 - User administrator can no longer set password for other users

Change Header

Change Description

Related topics