Thanks for your question Christian Best. Wouldn't it make much more sense to start using single sign on (SSO), so you do not have to worry about password administration at all? SSO is used by the majority of ACRM customers, especially to prevent activities like password resets.
Please let me know if we can help you with implementing SSO.
we are already using SSO for all internal traffic. For external traffic like CRM Mobile, we are using User + Password.
As we have to secure our users we have a station wide rule, which states a 60 day change frequency of user passwords.
Since users are using SSO and the option to save passwords in their mobile browsers, they forget the passwords after a period of 60 days and we have to manually reset those.
For a new password you always need the old one and the standard change procedure doesn't store the old password from browsers neither checks for SSO.
We currently only support a 'forget my password' option in our SaaS environment. If you want to have this available in the core product, you could create a change request via support.aurea.com which is evaluated by our product department.
In the mean time, you could check the options for using a reverse proxy to authenticate your users (domain credentials) from external before sending them over to the ACRM web application server (with SSO). The latter is the approach other customers are taking.