Script has been added into JIRA.

Verified Add scenarios of Partner, Broker and Company Admin. In edit mode we cannot not edit user's own password due to security reason. So not able to verify edit mode.

For employee role, tried to add new employee on LB with Strong password and Username settings but not able to add employee on LB.

For employee login, I added new company on Stage by updating master company db. Added new employee with below settings -
Username Password
Lastname 4 1
Firstname 1 2
SSN 3 3
DateofBirth 2 2
EmployeeID 0 2

All scenarios are working fine.

Step 1: Do not set default password. If set it should be random always and not predictable.
Step 2: Send a onetime valid link to the users mail id .Set a 1 or 2 day expiration time for using that link.
Step 3: When user clicks the link navigate user to change password page/set password page
Step 4: Use a strong password policy like minimum 8 characters, alpha numeric at least 1 special and 1 upper
case character .no sequential characters allowed(11,aa,555)
Step 5:Invalidate the sent link immediately from server.

ST 168 is enhancement suggestion to ST-88.

Vijayendra Shinde Is this re-open?

Hi Rakesh,

Zeeshan has some suggestion over existing password generation. He has added new JIRA ST-168 for this suggestion.

Changes which we did for this ticket are working fine.

We can move this to Stage.

Thanks.

Once WT-3585 is fixed , can proceed with this patch

verified on lb , all the passwords combinations on security pages are working fine.

verified on stage , all the passwords combinations on security pages are working fine.

We can not add new Company on Production.
for existing company all the passwords combinations on security pages are working fine.