Home - News ( United States | United Kingdom | Italy | Germany ) - Football scores

Showing content from https://support.google.com/a/answer/33382 below:

Set up password recovery for users

As your organization's super administrator, you can let users and non-super administrators recover their account if they forget their password:

• Option 1: Let users reset passwords themselves through an automated system (you need to turn on non-admin password recovery in your Admin console).
• Option 2: Ask users to contact an administrator to reset their password.

This feature isn’t available if your organization uses single sign-on (SSO) or Password Sync. It also doesn’t work for users under the age of 18. For details, go to When user password recovery isn't available.

You can let users who aren't super admins reset their own passwords without contacting an administrator by turning on password recovery in the Admin console.

Expand all  |  Collapse all

Before you begin: Users need a recovery phone number or email address where they can get recovery instructions:

• To have users set up recovery information, tell them to go to Set up a recovery phone number or email address.
  Important: Users who have 2-Step Verification enabled can use only a recovery email address to reset their password.
• To set up recovery information for users in the Admin console, go to Add recovery information for admins and users.

Users who haven't added recovery information are directed to contact an administrator.

Before you begin: If needed, learn how to apply the setting to a department or group.

1. Sign in

   with a

   super administrator

   account to the Google Admin console.

   If you aren’t using a super administrator account, you can’t complete these steps.

3. (Optional) To apply the setting only to some users, at the side, select an

   organizational unit

   (often used for departments) or configuration

   group

   (advanced).

   Show me how 

   Group settings override organizational units. Learn more

4. Click User account recovery.

5. Click Allow users and non-super admins to recover their account. This setting won't apply if your organization uses single sign-on (SSO) with a third-party identity provider or Password Sync.

6. Click

   Save.

   Or, you might click

   Override

   for an

   organizational unit 

   .

   To later restore the inherited value, click Inherit (or Unset for a group).

Important: Immediately remove a user's recovery information either when they leave your organization or if their account might be hijacked (see below).

When non-admin password recovery is turned on, you should take precautionary action if you believe a user account may be vulnerable or compromised. For example:

• The user is terminated or leaves your organization.
• You suspect the account has been hijacked, and the user's recovery information has been changed.

In these cases, removing the user's recovery information is not enough to protect the account, since the information can still be used for recovery for a period of time after being removed. You should either change the user's password and disable non-admin password recovery, or suspend the user account to prevent all access.

• Google Workspace for Education users under the age of 18—With the Recovery information setting, you can allow users and admins to add a phone number and email address as recovery options. It’s automatically turned on for Google Workspace for Education super admins but is off for users. For users with primary or secondary education accounts, this option is not available. You or another super admin in your organization can turn the setting on for users with Higher Education accounts, other admins, and teachers.
• Organizations using SSO or Password Sync—If your organization uses single sign-on (SSO) with a third-party identity provider or Password Sync, the Allow users and non-super admins to recover their account setting won't apply.
  If your organization uses Password Sync and you prevented users from changing their Google passwords, users are redirected to Active Directory to reset their passwords. This keeps their Active Directory passwords in sync with Google Workspace.

If a user clicks Forgot password? on the sign-in page, and you haven't turned on password recovery, they get a message to contact their administrator. Make sure you've provided a way for users to contact an administrator if they can't sign in to their account.

See also Reset a user's password.

How can we improve it?

RetroSearch is an open source project built by @garambo | Open a GitHub Issue

Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo

HTML: 3.2 | Encoding: UTF-8 | Version: 0.7.4