Enable password expiration
Important Security Note: If your site has custom authorization configured this check may not be applicable.
Having Password Expirations turned on helps keep your site secure by requiring users to reset their password periodically. This keeps old and possibly compromised passwords from persisting and creating security issues on your site. The Enable Password Expiration setting is the base setting for all other password expiration settings and must be enabled for those to take effect.
Verifying The Check
To determine whether your site's Password Policy is turned on you can navigate to the Settings Application and then find the Security & Membership > Passwords settings.
From there you will want to find the Password Expiration section and verify whether the Enable Password Expiration checkbox is checked. We recommend that Enable Password Expiration be turned on.
This setting is only applicable to MVC live sites that have the MVC live site configured via code to respect the setting values. For more information on this please reach out to the Toolkit For Kentico team.
Changes to your site should only be made by an experienced Kentico Xperience developer. If you need assistance in making these changes please reach out to the Toolkit For Kentico team to be connected with a Kentico Xperience partner.