Reset a user's password?

If a user forgets the password for their managed Google account (for example, their Google Workspace or Cloud Identity account), or if you think their account has been compromised, you can reset their password from the Google Admin console.

Change a password

Reset a user's password

As an administrator, you can reset users' passwords to maintain account security. To do so, you must be signed in with an administrator account that has reset password privileges.

  • This will open the Google Admin console. Learn more
  • From the Admin console Home page, go to Users.
  • In the Users list, find the user. If you need help, read Find a user account.
  • Point to the userand thenclick Reset password at the right.

reset-password-option

  • You can also find this option on the left of the user's account page.
  • In the Reset password box, select an option:
      • Automatically generate a password.

generate-password-1

  • To enter your own password, select Create password. To view the password you created, click Preview "".
    Note: By default, password minimum length is 8 characters. You can change password requirements for your organization.

generate-password-2

  • (Optional) If you selected Create password, you can have the user change the password the next time they sign in. To do so, check the Ask for a password change at the next sign-in box.

change-password-option

  • Click Reset.
  • (Optional) To paste the password somewhere, such as in a Google Chat conversation with the user, click Copy Password.
  • To finish the password reset, choose one:
    • To email the password to the user, click Email Passwordand thenSend.
    • Click Done.

Reset another administrator's password


Reset your own administrator password


After changing a password

After you reset a password, the user is signed out of all active sessions. To reopen their apps, the user needs to do the following:

  • Google web apps (such as Gmail or Google Drive)—The user has to sign in again with their new password.
  • Google apps on Android—The user is notified they need to verify their identity by signing in to their account. Already synced data—for example, email already received in Gmail—is still accessible, but no new emails can be sent or received until the user signs in again with their new password. 
  • Google apps on Apple iOS—The user's Google account is removed from the account list. The user has to add their account again, then sign in with their new password.
  • Third-party apps connected via OAuth—Third-party mail apps like Apple Mail and Mozilla Thunderbird―as well as other applications that use mail scopes to access a user’s mail―will stop syncing data after a password reset, until a new OAuth 2.0 token is granted. A new token is granted when the user signs in with their Google account username and new password. For details, go to Automatic OAuth 2.0 token revocation upon password change.
  • Third-party apps that require application-specific passwords (ASPs)—When 2-Step Verification is in use, application-specific passwords (ASPs) may be required to use legacy applications that don't support OAuth. After a password reset, all ASPs are revoked and need to be regenerated. For details, go to Sign in with App Passwords