Auth0 Password Rotation at Database connection/realm level

“In my tenant, I have two database connections: one for external users and another for internal users. How can I implement a password reset policy that enforces a 90-day password reset for internal users only at the database connection level? While I’m aware of the Auth0 Password Rotation integration ( that operates at the tenant level, I specifically want this policy to be applied at the database connection level. How can I achieve this?”

Hi dshanmugaraju,

As per my understanding this can be achieved using custom rule, you can retrieve the user metadata and check if they belong to internal database, if so check their last password change date, if it exceeds 90 days, you can trigger password reset flow.