User-Initiated Password Changes

Function Overview

This function allows the user to change the password of their domain account via the Hideez Client.

After the password is changed, the user can sign in without manually entering the password — it is automatically read from the Hideez Key.

The password change complies with domain security policies, including:

• password complexity requirements;

• limits on password change frequency;

• defined intervals between changes.

Prerequisites

Before starting, ensure that:

• Integration between the Hideez Server and Entra ID is properly configured.

• The user is created manually on the Hideez Server or imported from Entra ID.

• The user must have a Hideez Key with status “Ready”, “Active” or “Reserved”.

• The Hideez Client is installed on a workstation

• The workstation is joined to the Entra ID.

• The workstation is approved on the Hideez Server.

Step 1. Creating a Domain Account

1. Sign in to the Hideez Server using an administrator account.

2. Navigate to the user list, select the appropriate user, and open their profile.

3. Click Create personal account.

4. In the account creation form, fill in the required fields:

   • Name* – a descriptive name for the account;

   • Login Type – select Azure AD Account;

   • Login*:- the email of the Entra ID user;

5. Select the checkbox Skip Password — the user will add the password later via the Hideez Client.

6. Click Create to save the account.

Example domain account:

• Name* – John Smith Entra ID Account

• Login Type – Azure AD Account;

• Login*:

  • User Logon Name – [email protected]

  

Step 2. Initial Computer Unlock

The user signs in to a workstation joined to the Active Directory domain and connects the Hideez Key to the Hideez Client.

Step 3. Setting the Current Password

After the key is connected, the user account is automatically loaded onto the key from the server. This account is marked with a gear icon and does not contain a password — it cannot be used to unlock the computer until a password is added.

To add a domain password to the account on the key, the user must manually enter their current password via the Hideez Client interface.

To do this, follow these steps:

1. Connect the key to the workstation.

2. Wait for the account to appear on the key.

3. Select the corresponding account on the key.

4. Set the current domain password via the Hideez Client interface.

5. Save the changes.

After completing these steps, you will be able to unlock the workstation using this account on the key.