How to disable forgot password for employees?
We have a requirement to disable forgot password option for employees. I had a look at the privileges and security policies and found that 'PER_RESET_PASSWORD_PRIV' is part of the role (via an inherited role Manage My Account). I initially thought that removing this will stop the application from sending the reset password link to employees, however the forgot password mails are being sent and employees are able to reset the passwords.
Just wanted to understand if there is a way to stop employees from resetting the passwords?
We want pending workers and certain 3rd party users to continue using the forgot password option, and that is the only reason why we haven't considered disabling the forgot password/reset template totally.