Hi Akshay,

The Two factor authentication(feature) uses OneTimePassword(OTP) which was introduced in Pega 7.3 . You can make use of this  API (pxSendOTP) for one-time passwords.

You can also check below link:

https://pdn.pega.com/release-note/two-factor-authentication-one-time-pa…

To implement force change password you have the option to configure the password expiry for which you need to provide the number of days after which you want to force the change password.

https://pdn.pega.com/configuring-login-security-and-password-policies/c…

Other option is you have a checkbox of "Force change password in next login" in the security tab of the operator profile, this checkbox is mapped to a property "pyChangePasswordOnNextLogin" which is of type "TrueFalse". So if you have some requirement where you want to force the user to change the password while login based on some scenario then you can set the value of this property to true, so that while login he will get the option to change the password before login.

Regards,

Vikash

I afraid that we cannot use two factor authentication, because we have different set of user autheticated from different systems. Only one set of users who follow default Pega authentication will have this capabilities.It would be difficult to enable security profile for all users.

Please provide inputs considering above scenario. Thanks

I am still figuring out the right solution. Your inputs will be helpful.