Skip to main content

Checkup Documentation

Use password policy

cms-settingskey-password-policy

severity-high

Summary

Important Security Note: If your site has custom authorization configured this check may not be applicable.

Password Policies help keep your site secure by requiring newly created passwords to meet the criteria set within the Kentico Xperience settings (if you are utilizing Kentico Xperience's Authorization feature). This is the base setting for all other Password Policy settings and must be enabled for the other settings to take effect. 


Check Logic

Constant Care for Kentico will ensure the Use password policy setting are turned on (default)

You can manage your settings for this checkup in the Constant Care for Kentico admin settings.


Verifying The Check

To determine whether your site's Password Policy is turned on you can navigate to the Settings Application and then find the Security & Membership > Passwords settings.

From there you will want to find the Password Policy section and verify whether the Use Password Policy checkbox is checked. We recommending using a password policy to increase the security of your site.

Changes to your site should only be made by an experienced Kentico Xperience developer. If you need assistance in making these changes please reach out to the Toolkit For Kentico team to be connected with a Kentico Xperience partner.