Comment 3 for bug 884451

Any detail on how this is supposed to work on the keystone side beyond what we already support?

If the user has a defined email address, an external system can currently override a user's password with something random and email it to them. The user could then change their own password.