Enforce strong password at registration

  • Resolved moohah

    (@moohah)


    3 years, 6 months ago

    Hi

    I’ve enabled enforce strong password for all users but from what I can see this does not prevent someone from registering with a weak password, is this correct? I would really like to not allow people to register with weak passwords rather than just prevent them doing so when updating their password later.

    The page I need help with: [log in to see the link]

Viewing 1 replies (of 1 total)
  • Plugin Support WFAdam

    (@wfadam)

    Hello @moohah and thanks for reaching out to us!

    Our enforce password is for when a user is updating their password once the account is already set up.

    You can use this to either “Force admins and publishers” or “force all members” to use strong passwords. We recommend you force admins and publishers to use strong passwords. When a user on your WordPress site changes their password, Wordfence will check the password against an algorithm to make sure it is strong enough to give you a good level of protection. If the password fails this check then it’s rejected and the user must enter a stronger password.

    Wordfence checks that the password is a minimum length, that it doesn’t match any known obvious passwords and it then uses a point system to allocate points based on things like whether it contains a number, if it has upper and lower case letters and so on. If the point score does not exceed a required level, then it will reject the password the user entered.

    Hope this helps!

    Thanks again!

Viewing 1 replies (of 1 total)
  • The topic ‘Enforce strong password at registration’ is closed to new replies.