What Should I Know about Resetting Passwords if My Domain Uses LDAP or Third Party Authentication?

No ratings

Question

 What Should I Know about Resetting Passwords if My Domain Uses LDAP or Third Party Authentication?

 

Answer

 If you assign Domain Control permissions that allow for a password reset to certain users, those users will only be able to edit manually created users' passwords unless the "Allow Administrators to edit all imported data via the web" setting is turned on under the Manage Domain > Settings > General tab.

 


2016-10-12_14_57_46-PowerSchool_Learning_Domain_Control_Center.png

 

If that setting is on, those assigned with the password reset permission will be able to reset passwords for imported users as well.

 

If your school is using third party authentication such as LDAP for some or all users, PowerSchool Learning does not need to store those users' passwords, so you do not need to set passwords for these users in your import file. In fact, if you do set passwords and are using third party authentication, you will effectively create two passwords for your user with which they can access PowerSchool Learning, one through the third party connection, and one in PowerSchool Learning. This could cause confusion for your users about which password is correct, and which application is controlling which password.