Does One IM supports password policy to allow user to change password after first login

One Identity Manager supports one-time passcodes if that is what you are up-to.

No, once user login’s either by passcode or by random(one time password) in one IM we want user to change the password.

We can use  Password reset portal to reset the password, but we want user to change the password forcibly after using one time password.

Thanks

What is a one-time-password? A passcode is a one-time-password in common sense.

One time password is random/initial generated password generated which is sent to user via mail after creating user in OneIM.

Our requirement is user will either use either random/initial generated password or Passcode to login but user must be forced to change the password after that.Is it possible to achieve this functionality?

The first question would be how you authenticate in the Web Portal?

Currently, we are using Employee(role based) on Web Portal but going forward we have to change it so that user can login with central password.Also,for Password reset portal we tried using "AD manual input/role based).

First, you cannot log in with the central password. If you want to force a user to change a password using "AD manual input/role-based", then the user will have to log into AD somewhere else (Windows PC for example) (assuming you have set UserMustChangePassword for the AD User).

If you want to use the employee-based authenticator, you would have to customize something in the web portal as the system itself has nothing ootb. As a rough idea, the web portal could check for a specific value at the person that will only be set if the password has been changed by the user and if not it presents you a page where the user can set the password.

Or, you stop using initial passwords at all and rely on the temporary passcode.

First, you cannot log in with the central password. If you want to force a user to change a password using "AD manual input/role-based", then the user will have to log into AD somewhere else (Windows PC for example) (assuming you have set UserMustChangePassword for the AD User).

If you want to use the employee-based authenticator, you would have to customize something in the web portal as the system itself has nothing ootb. As a rough idea, the web portal could check for a specific value at the person that will only be set if the password has been changed by the user and if not it presents you a page where the user can set the password.

Or, you stop using initial passwords at all and rely on the temporary passcode.