SN System Properties Reference
Property reference

password_reset.request.expiry

The password_reset.request.expiry property defines the duration in minutes before a password reset request becomes invalid. By default, this period is set to 10 minutes, which helps enhance security by limiting the time a reset request is active.

Default: 10 Type: integer Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? This property specifies the expiration time for password reset requests, ensuring they are only valid for a limited duration.
What area does it affect? Password Management
What does the default mean? The default value is "10", which sets the baseline numeric behavior for this property.
When should you review it? An admin should review this property when adjusting security policies or responding to user feedback on password reset processes.

Out of the box property record

Raw metadata from the property record.

Property name password_reset.request.expiry
Sys ID 93b502c1eb2001006a668c505206fe3a
Type integer
Application Global
Default value 10
Description Number of minutes before a password reset request expires
Updated 2024-05-25 03:55:00

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... visibility into them— regardless of their actual permissions —creating a risk of unauthorized data modification and privilege escalation. Minimize reset password request expiration duration • Description ◦(Old‎ <blank> ◦(New‎ If "password_reset.request.expiry" is not set to the recommended value of "10" or less, then it increases the opportunity for someone else to guess and use the request and attempt to reset the ...
Documentation excerpt View supporting context
Context preview Snippet 2
... opens the email and clicks the link in the email to reset the password. The link is valid for a period of time that an administrator specifies by using the password_reset.request.expiry property. 6. The Reset Password page guides the user to reset the password. 7. The system checks the credential store to verify the identity and then displays the new password ...
Additional source link Another external reference for this property
Open reference