Password Reset Procedure

The user starts the PC and gets the Windows login screen.Here the user has first to switch to “Sign-in options":

Now the user will see the “DirX Password Reset Client” tile.

If the user clicks on the tile “DirX Password Reset Client” he gets the following tile with an input field which must be filled with the correct domain and account name and a drop-down list to choose the authentication mode.
The drop-down list contains the configured options (in the picture three options):

The user chooses his/her mode to reset and clicks on the submit button (the arrow right to Domain/Username)

The user is asked to enter the account name and domain name for the password reset

The user must press the “right arrow” (submit) button to finish the domain\account input

The password reset client now looks up the smart card for suitable certificates.(An animation is shown as the access can take a while)

In general, the client will show a list of suitable certificates (also from multiple smart cards )

When the certificate is selected the user is asked to enter the smart card PIN

If the user clicks on the more information link an additional dialog box is presented:

The password reset client validates the smart card PIN.In case of an invalid PIN the user is asked to try again from step 3 after clicking ok

The user is asked to enter the account name and domain name for the password reset:

The password reset client now checks the network connection of the PC to check if in corporate or Internet environment.

It then looks up the authentication questions for the given account. (An animation with different messages is shown as the network check and access can take a while)

The password reset client then shows a randomized set of the authentication questions for the given account



As long as an input box has the focus a so-called Password Reveal "Eye" button is visible in the right corner of the input box.This eye allows the user to see the password characters as he or she types them in.If the user moves the mouse pointer over the Password Reveal button then presses and holds down the left button of his mouse, the password (or anything that has typed in so far in the box) will be displayed.As soon as the user releases the mouse button, the password characters will go back to being “blobbed out” with asterisks again.
Note that the questions are displayed as defined in the Web Center (that is in the same language and in the same spelling as defined).

The answers are then checked on the server.If the answers are correct, then the subsequent procedure is described in the chapter Set New Password Step.If at least one of the answers is incorrect then the following dialog is shown:

The password reset client now checks the network connection of the PC to check if in corporate or Internet environment.It then sends a request to the reset service to send a text message to the configured mobile phone number of the user.(An animation with different messages is shown as the network check and access can take a while)

The response (in an okay case) will give a hint to which number the message was sent (last 4 digits are given) and how long the generated one-time password is valid. If the user receives the one-time password on his or her phone, he can click Set new password button to continue.

In the following Set New Password step the dialog box is slightly different.A further input field labeled "Enter mobile OTP" for the one-time password is shown:



Otherwise, the behavior is identical to chapter "Set New Password Step".

The password reset dialog is opened

The user’s password input is validated based on the password policy.If the password policy criteria are not met (shown with red background), an error message is shown and the user is asked to try again from step 1