Skip to main content

Checkup Documentation

Enable password expiration

cms-settingskey-password-expiration-enabled

severity-high

Summary

Important Security Note: If your site has custom authorization configured this check may not be applicable.

Having Password Expirations turned on helps keep your site secure by requiring users to reset their password periodically. This keeps old and possibly compromised passwords from persisting and creating security issues on your site. The Enable Password Expiration setting is the base setting for all other password expiration settings and must be enabled for those to take effect.


Check Logic

Constant Care for Kentico will ensure the Password expiration setting is turned on (default)

You can manage your settings for this checkup in the Constant Care for Kentico admin settings.


Verifying The Check

To determine whether your site's Password Policy is turned on you can navigate to the Settings Application and then find the Security & Membership > Passwords settings.

From there you will want to find the Password Expiration section and verify whether the Enable Password Expiration checkbox is checked. We recommend that Enable Password Expiration be turned on.

 

MVC Sites

This setting is only applicable to MVC live sites that have the MVC live site configured via code to respect the setting values. For more information on this please reach out to the Toolkit For Kentico team.

Changes to your site should only be made by an experienced Kentico Xperience developer. If you need assistance in making these changes please reach out to the Toolkit For Kentico team to be connected with a Kentico Xperience partner.