# Resetting Account Passwords

## Passwords

### Expiration

Passwords expire every **90 days**, after which users will be required to update their password.

### Security

In general, you’ll only need to reset your password if you’ve forgotten it, but there are some instances when resetting your password can help protect the security of your account.

We recommend resetting your password in these cases:

* You notice something suspicious in your ARM account.
* You suspect someone you don't trust may have your password.
* We ask you to change your password.

If you have not requested to reset your password but receive an email asking you to change it, it could be a case of phishing. Instead of clicking on a suspicious link in an email, log in to your account to reset your password.

{% hint style="warning" %}
NOTE: After **three** unsuccessful login attempts, users are required to reset their password in order to log in.
{% endhint %}

### Reset Account Password <a href="#reset-account-password" id="reset-account-password"></a>

Users can reset their password by clicking on the **`Forgot Password?`** link on the sign-in page.

<figure><img src="https://1912836914-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F9vAxMuDrkUkB4OXlH9CL%2Fuploads%2FjtVbeWiP48iOvdGN2Q2N%2Fimage.png?alt=media&#x26;token=6dc1d0f9-04be-4aea-b78b-90dc22cfe98e" alt="" width="338"><figcaption></figcaption></figure>

Alternatively, users with administrator permissions can reset passwords for sub-users from the **`Users`** tab if a user has forgotten their password or their account has been compromised. The user whose password has been reset is signed out of active sessions and has to sign in again using their new password.

To reset a user's password:

1. Log in to your ARM account.
2. Hover your mouse over the **`Admin`** tab and click on **`Users`**.
3. Locate the user whose password you want to reset.
4. Click on **`Reset`**.

<figure><img src="https://1912836914-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F9vAxMuDrkUkB4OXlH9CL%2Fuploads%2FvvP3toh60n1cQpkRLxHt%2Fimage.png?alt=media&#x26;token=75da8ebc-79be-42f4-b3aa-58ce277f0125" alt=""><figcaption></figcaption></figure>

5. On the next screen, there are two options to choose from:

   * **`Auto-generate password:`** This option automatically generates a new password and is emailed to the user account. Once the password is received, users must log in and change it to something they can easily remember.
   * **`Let me create the password:`** This option allows users with the 'Admin' role or 'Manage Users' role permissions to create a password on behalf of users.

   <figure><img src="https://1912836914-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F9vAxMuDrkUkB4OXlH9CL%2Fuploads%2FdrJApaKyBEv18Lnm74rh%2Fimage.png?alt=media&#x26;token=a8b2e195-eaf1-496a-b3c6-355b900791a1" alt="" width="362"><figcaption></figcaption></figure>

#### Password Requirements

New passwords must meet the following criteria:

* Must be at least **10 characters**
* Must include at least **1 letter**, **1 number,** **1 lower case letter,** and **1 upper case letter**
* Must be different from the last **5** **previously used passwords**
* Must not include **& < > ' \\" + = | \\\ ; ? , . \` {} \[] characters**

### Troubleshooting <a href="#troubleshooting" id="troubleshooting"></a>

No email received? If you don't see the email in your inbox:&#x20;

* Check your **spam/junk** folder
* Try to **reset your password** again
* If that still does not work, contact the ARM Support Team at <support@autorabit.com>.

### Change Your Password <a href="#change-your-password" id="change-your-password"></a>

Use the following steps to change your current password:&#x20;

1. Log in to your ARM account.
2. Click on your name in the top right corner and click on **`Change Password`**.

<figure><img src="https://1912836914-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F9vAxMuDrkUkB4OXlH9CL%2Fuploads%2FUJvISaUPh72aLovwSQEm%2Fimage.png?alt=media&#x26;token=30210933-a6c1-43e9-9ff8-095d5238f781" alt="" width="252"><figcaption></figcaption></figure>

3. Enter your **`Old Password`** and **`New Password,`** then re-enter your **`New Password`** to confirm.

<figure><img src="https://1912836914-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F9vAxMuDrkUkB4OXlH9CL%2Fuploads%2Fhrb3qwYa0zKx5JUEEwMe%2Fimage.png?alt=media&#x26;token=ca46fc9e-0681-4689-bf53-213c54aac416" alt=""><figcaption></figcaption></figure>

4. Your new password takes effect immediately.

FAQ:&#x20;

### How many times can I attempt to log in before being locked out of my account?

After three unsuccessful attempts, a user is locked out. To log in, the user must enter the correct username, password, and the OTP sent to their email.

### Who should I contact to reactivate my AutoRABIT account if it has been locked? <a href="#who-should-i-contact-to-reactivate-my-autorabit-account-if-it-has-been-locked" id="who-should-i-contact-to-reactivate-my-autorabit-account-if-it-has-been-locked"></a>

If your account is locked, the person who holds the AutoRABIT main account should be your first point of contact because they will be able to reactivate it.

### Why did I not receive the email to reset my account password? <a href="#not-receiving-email-to-reset-your-account-password" id="not-receiving-email-to-reset-your-account-password"></a>

If you requested a new password but didn't receive your password reset email, then:

1. Check the **spam** or **junk** email folder in your email accounts linked to your AutoRABIT account.
2. Try to **reset your password** again.

### What factors should I consider when modifying or resetting my account password? <a href="#what-are-the-factors-i-should-consider-when-modifying-or-resetting-my-account-password" id="what-are-the-factors-i-should-consider-when-modifying-or-resetting-my-account-password"></a>

#### **Password Requirements:**

1. MUST contain at least **10 characters** (12+ recommended)
2. MUST contain at least **one uppercase** letter (A-Z)
3. MUST contain at least **one lowercase** letter (a-z)
4. MUST contain at least **one number** (0-9)
5. MUST contain at least **one special** character (such as !, %, @, <, >, # and so on)
6. MUST NOT contain an email address, first, middle or last name, or commonly used passwords
7. MUST NOT be one of the **5 previously used** passwords

### How often do I have to change my password for the ARM application? <a href="#how-often-do-i-have-to-change-my-password-for-the-arm-application" id="how-often-do-i-have-to-change-my-password-for-the-arm-application"></a>

ARM has a 90-day rotational policy that requires you to change your password every 90 days. Follow the instructions [here](https://knowledgebase.autorabit.com/product-guides/arm/arm-administration/user-management/reset-account-password) to reset your ARM password.