Don't require password reset on new AGO accounts

395
3
08-04-2020 09:49 AM
Status: Open
by Anonymous User
Not applicable

When setting up a new named user, whether one at at a time or in bulk, there are two options. Email the user with the provided email address and have them create a new password and security question. The other is to not notify them and set a temporary password and when they try to login to AGO or a field app, they are asked to reset their password.

Until recently, I didn't think much of this workflow. However, in May we had a major flood and for days I was creating a ton of AGO users in our Organization - 25+ users for data collection, users for outside agencies to access data, etc. What I found absolutely maddening was this requirement to reset the password. Whether uploading in bulk or not, AGO requires a new user create a new password and security question upon first login. This was a huge waste of time when minutes mattered trying to get field crews and volunteers out the door or getting people access to data. I spent hours manually logging into AGO for each individual user to reset the password to something I had control over, not the user. We had different volunteers everyday - I couldn't let users create passwords and security questions.

What has confused me the most about this is when I create new users in our Portal, the password I give is the permanent password. No password reset is required.

It seems odd that after all these years, AGO still requires this. There should be an option, maybe a checkbox next to the password, to not require the password be changed on first login. This would have solved my problem when creating dozens of new users for an emergency event. Instead, I wasted so much time creating a user and having to login in a new browser in order to "set" the password.

Please consider adding an option to make the first password, whether in the form or in the CSV file, to be the permanent password and not require a password reset.

3 Comments
Peter_Klingman

Hi @Anonymous User thanks for submitting the idea. Not sure if you are familiar with the new Idea statuses yet - Open has somewhat replaced New and Reviewed - if an idea is Open it means it is ready for voting, not necessarily that Esri hasn't seen it. I agree that the difference between Portal and Online here is confusing. 

Please keep in mind that Esri Disaster Response can provide additional organization users for disaster response to scale as needed.

 

 

Peter_Klingman

Hi Nathan, thanks for the response on this. Votes are a big part of determining demand but are certainly not the only reason an idea would/would not be implemented. 

I've logged an internal issue for this idea and will post any updates here. 

 

VHolubec

Hello, 

the option that the password created by admin will be firm not temporary would be great!

 

What maybe helps you now as a workaround, is the password reset after the user was created - something like that:

create user account, and then.

account = gis.User("DemoAcc")
account = gis.users.get("DemoAcc")
account.reset("OldPassword1","NewPassword1")

But the user still needs to set the Security Question. Don´t know if the admin can set it up for the user or skip it for accounts.

Vladimir