How-to Change User Password On AEM When “PasswordValidationAction” is Enabled in OSGI “AuthorizableActionProvider”

How-to Change User Password On AEM When
How-to Change User Password On AEM When "PasswordValidationAction" is Enabled in OSGI "AuthorizableActionProvider"

This document details the process and requirements to change a user password on AEM.

On AEM, by default we can assign any password to a user. But we can restrict this and force users to strict password validation rules.

Enable Advanced Password Rules

Enable “PasswordValidationAction” in OSGI “AuthorizableActionProvider“, as below. And based on the regex, users will have to set specific passwords.

AEM AuthorizableActionProvider Enabled
AEM AuthorizableActionProvider Enabled

Step-by-step guide

  1. Login to AEM > Tools > Security > Search for a User
  2. On the User details page, select “Change password”
    1. New Password and Retype Password: <New password>
    2. Current Password: <Current password that you would like to change>
    3. AEM Change Password
      AEM Change Password
  3. Password requirements:
    1. At least 12 Characters length
    2. At least 1 Upper
    3. At least 1 Lower, 
    4. At least 1 Number/Digit
    5. At least 1 Special Character out of this subset: @#%*-+=~[]{}<>?

Note: The above are specifically set in the “Configure” section of the OSGI property AuthorizableActionProvider.