Using password again

Mateusz Żebrowski asked on December 1, 2015 07:57

Assume that we forcing users to change their password from time to time. Is it possible that their will use their old passwords in future? I mean if user change from password A to B will he/she be able to change it from B to A next time?

Correct Answer

Brenden Kehren answered on December 1, 2015 15:40

Write a global handler for when a user is updated to store the last N # of passwords off to a different location. Then when a user updates their password again, check it it's in the list of previous N list.

0 votesVote for this answer Unmark Correct answer

Recent Answers


Brenden Kehren answered on December 1, 2015 08:31

According to the documentation there isn't anything about not using N # of last passwords. So technically they could have password A and change it to password A again and there are no issues.

0 votesVote for this answer Mark as a Correct answer

Mateusz Żebrowski answered on December 1, 2015 08:37

Ok so is there any solution for this? How can I force users to never use older passwords?

0 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.