Password change mechanisms - Documentation for Remedy Single Sign-On 20.08

Remedy Single Sign-On is designed to authenticate users via identity providers which store all user related data, such as usernames and passwords. Hence, users can change their password on an identity provider (IdP) side. 

By design, identity providers do not automatically notify Remedy SSO about the password change. Hence, an end user's Remedy SSO session remains active until it expires, and is not revoked after password change on IdP. To force the logoff, and receive the request for entering a new password, an end user needs to ask a Remedy SSO administrator to delete all active sessions/OAuth of this end user.