Password minimal length
severity-high
cms-settingskey-password-minimal-length
Summary
Important Security Note: If your site has custom authorization configured this check may not be applicable.
Password Policies help keep your site secure by requiring newly created passwords to meet the criteria set within the Kentico Xperience settings (if you are utilizing Kentico Xperience's Authorization feature). Part of a good security practice is to require users to us a minimum length when creating a password.
Check Logic
Constant Care for Kentico will ensure the Minimal length of password setting is at least 8 (default)
You can manage your settings for this checkup in the Constant Care for Kentico admin settings.
Resolution
To determine what your site's Password Minimal Length is set to you can navigate to the Settings Application and then find the Security & Membership > Passwords settings.
From there you will want to find the Password Policy section and verify the Minimal Length setting. Many security experts recommend a minimal length of at least eight characters.
Not sure what to do?
If you are ever unsure about making changes to your site, we encourage you to reach out to your
Kentico Xperience Gold Partner. If you do not have a partner,
then feel free
contact the Constant Care For Kentico team to get connected
with an expert.