This API simplifies password management by enabling users to update their existing passwords to a new one of their choice. This enhancement strengthens security practices and offers a more seamless user experience by integrating password management directly into existing workflows.
This API is restricted to JWT token authentication. You must change the password using basic authentication only. Otherwise, it returns an error in the response.
Sample - Error message in the responseSample - Error message in the response
API Response
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE SIMPLE_RETURN SYSTEM "<qualys_base_url>/simple_return.dtd">
<SIMPLE_RETURN>
<RESPONSE>
<DATETIME>2025-09-25T06:54:32Z</DATETIME>
<CODE>2010</CODE>
<TEXT>Please use basic authentication, as this endpoint doesn't support JWT authentication.</TEXT>
</RESPONSE>
</SIMPLE_RETURN>
| Parameter | Required/Optional | Data Type | Description |
|---|---|---|---|
| newPassword | Required | String | The new password for the user (formatted as JSON) |
API Request
curl --location
'<qualys_base_url>/api/2.0/fo/user/change_password/index.php' \
--header 'X-Requested-With: test' \
--header 'Content-Type: application/json' \
--data '{
"newPassword": "abcd123#"
}'
XML Response
<?xml version="1.0" encoding="UTF-8" ?> <!DOCTYPE SIMPLE_RETURN SYSTEM "<qualys_base_url>/api/2.0/simple_return.dtd>" <SIMPLE_RETURN> <RESPONSE> <DATETIME>2024-08-23T05:18:08Z</DATETIME> <TEXT>Password changed successfully</TEXT> </RESPONSE> </SIMPLE_RETURN>