Loading

Troubleshoot Password Reset Issues in Salesforce

Дата публикации: Feb 2, 2026
Описание

This article addresses common issues encountered when resetting a Salesforce password, including receiving an error email, dealing with expired links, and situations where you've forgotten your security question answer.

Causes of Password Reset Errors

There are several reasons you may encounter issues when resetting your password:

  • "Your password cannot be reset at this time": This error occurs when the "Require a minimum of 1 day Password Lifetime" policy is enabled at the organization or profile level. When this setting is active, a user's password cannot be changed more than once in a 24-hour period.

  • Expired Reset Link: A password reset link can expire due to one of two reasons:

    • Time Limit: The link has not been used within 24 hours of being requested.

    • Link-Screening Software: Email security software (such as McAfee's 'Link Protect' or Mimecast) can automatically access the reset link to scan for malware, which effectively uses and expires the single-use link before the user can click it.

Redirect Loop: A user might click the reset link and be redirected back to the login page without being prompted to create a new password. This can be caused by antimalware link-screening services, or persistent cookies from a previous SSO login.

 

Решение

For the "Your password cannot be reset at this time" error:

  • You must wait 24 hours from your last password change before you can reset it again.

  • As a workaround, a Salesforce administrator can temporarily disable the "Require a minimum 1 day Password Lifetime" policy.

    • In Classic: Go to Setup | Security Controls | Password Policies and disable the setting.

    • In Lightning: Go to Gear Icon | Setup | Security | Password Policies and disable the setting.

  • You can also disable this setting at the profile level for the affected user.

For expired or redirecting password reset links:

  • Request a new link: If the link expired due to the 24-hour time limit, the user can request a new password reset link from the login page.

  • Manual link entry: Copy and paste the password reset link directly into the browser instead of clicking it from the email. This can sometimes bypass link-screening software that automatically clicks the link.

  • Administrator setting: Have a Salesforce administrator enable the "Don't immediately expire links in forgot password emails" policy setting in the user's profile. This policy is designed to bypass email server protection that expires the link.

  • Contact IT/email security support: Reach out to your IT department or the support team for your email security software to allowlist emails from Salesforce.

If you have forgotten your security question answer:

  • If you have forgotten the answer to your security question, you cannot use the "Forgot your password?" link on the login page.

  • Contact your Salesforce Administrator to have them reset your password.

If you are the only administrator for your organization and cannot log in, you will need to contact Salesforce Support directly to have your password reset.

Номер статьи базы знаний

000386502

 
Загрузка
Salesforce Help | Article