为客户设置自助密码重置Set up self-service password reset for your customers

借助自助密码重置功能,已注册了本地帐户的客户可以将密码重置为他们自己的密码。With the self-service password reset feature, your customers who have signed up for local accounts can reset their passwords on their own. 这样可以显著减少支持人员的负担,尤其当有数百万客户定期使用应用程序时。This significantly reduces the burden on your support staff, especially if your application has millions of customers using it on a regular basis. 目前,使用已验证的电子邮件地址是唯一受支持的恢复方法。Currently, using a verified email address is the only supported recovery method.

备注

本文适用于在标准登录用户流的上下文中使用的自助式密码重置,它将本地帐户登录用作标识提供者。This article applies to self-service password reset used in the context of the standard Sign in user flow, which uses Local Account SignIn as the identity provider. 如果需要从应用程序调用完全可自定义的密码重置用户流,请参阅本文If you need fully customizable password reset user flows invoked from your app, see this article.

默认情况下,目录未开启自助密码重置功能。By default, your directory doesn't have self-service password reset turned on. 使用以下步骤启用该功能:Use the following steps to turn it on:

  1. 以订阅管理员身份登录到 Azure 门户Sign in to the Azure portal as the Subscription Administrator. 这是在创建目录时使用的同一工作或学校帐户。This is the same work or school account that you used to create your directory.
  2. 打开 Azure Active Directory(在左侧的导航栏中)。Open Azure Active Directory (in the navigation bar on the left side).
  3. 向下滚动“选项”边栏选项卡,并选择“密码重置” 。Scroll down on the options blade and select Password reset.
  4. 将“已启用自助服务密码重置”设置为“全部”。 Set Self service password reset enabled to All.
  5. 单击页顶部的“保存”。 Click Save at the top of the page. 大功告成!You're done!

若要进行测试,请对任何具有作为标识提供者的本地帐户的登录用户流使用“立即运行”功能。To test, use the "Run now" feature on any sign-in user flow that has local accounts as an identity provider. 在本地帐户登录页上(可在其中输入电子邮件地址和密码,或用户名和密码),单击“无法访问帐户?” 以验证客户体验。On the local account sign-in page (where you enter an email address and password, or a username and password), click Can't access your account? to verify the customer experience.