diff --git a/server/api/controllers/access-tokens/exchange.js b/server/api/controllers/access-tokens/exchange.js
index 2d3d90b..95e3e15 100644
--- a/server/api/controllers/access-tokens/exchange.js
+++ b/server/api/controllers/access-tokens/exchange.js
@@ -97,7 +97,6 @@ module.exports = {
 
     const newUser = {
       email: oidcUser.email,
-      password: '$sso$', // Prohibit password login for SSO accounts
       isAdmin,
       name: oidcUser.name,
       username: oidcUser.preferred_username,
diff --git a/server/api/models/User.js b/server/api/models/User.js
index 279f249..a0d9c50 100755
--- a/server/api/models/User.js
+++ b/server/api/models/User.js
@@ -18,7 +18,6 @@ module.exports = {
     },
     password: {
       type: 'string',
-      required: true,
     },
     isAdmin: {
       type: 'boolean',
diff --git a/server/db/migrations/20230809024146_all_null_password_field.js b/server/db/migrations/20230809024146_all_null_password_field.js
new file mode 100644
index 0000000..c86529f
--- /dev/null
+++ b/server/db/migrations/20230809024146_all_null_password_field.js
@@ -0,0 +1,11 @@
+module.exports.up = async (knex) => {
+  return knex.schema.table('user_account', (table) => {
+    table.setNullable('password');
+  });
+};
+
+module.exports.down = async (knex) => {
+  return knex.schema.table('user_account', (table) => {
+    table.dropNullable('password');
+  });
+};