Skip to main content

Force password change on 1st email access

sitespt
Hi, Is there a way we can force a user to change his email password when he logins on his webmail? We usually send the same password to all users and we know that most of them never change it causing a security / privacy threat. Similar systems have an option that will force the user to change the password on their first login. Thank you.

Comments

7 comments

Date Votes
  • vanessa
    Not exactly, but you can set the password based on age.
    0
  • sitespt
    @vanessa: I guess you missed my point. I am aware of the password based on age which is, in my honest opinion, a stupid thing which works against security instead of improving it. I remember many times where I used to remember a few passwords for different websites and I was forced to change them every 6 or 12 months and they wouldn't let me use any previous password. This just drives one crazy! It means that in 10 years, you need to "remember" 12 or 24 passwords just for that specific website... no, it doesn't make any sense for me, but hey, it is an optional feature which I choose not to use, ever. What I am asking is just to force users to NOT use the default email passwords that we create for them. It is not wise to keep using the password "password123" for example for months or years but some users may use it for life and don't bother to change it.
    0
  • sitespt
    I posted this feature suggestion at
    0
  • vanessa
    @vanessa: I guess you missed my point. I am aware of the password based on age which is, in my honest opinion, a stupid thing which works against security instead of improving it. I remember many times where I used to remember a few passwords for different websites and I was forced to change them every 6 or 12 months and they wouldn't let me use any previous password. This just drives one crazy! It means that in 10 years, you need to "remember" 12 or 24 passwords just for that specific website... no, it doesn't make any sense for me, but hey, it is an optional feature which I choose not to use, ever. What I am asking is just to force users to NOT use the default email passwords that we create for them. It is not wise to keep using the password "password123" for example for months or years but some users may use it for life and don't bother to change it.

    Maybe you missed my point then. I understand what you're trying to do, but re-explaining it doesn't change my answer. No, there is no current way to do this in cPanel. Perhaps you need to just not create shitty default passwords.
    0
  • sitespt
    lol... temperament...
    0
  • cPanelMichael
    Hello :) Thank you for taking the time to open a feature request. I see it's now approved and open to discussion. In the meantime, one workaround is to randomly generate a password for the email accounts you create to avoid providing the same password to multiple users. Thank you.
    0
  • sitespt
    @cPanelMichael: Thank you for the workaround but it is still not the same :) I hope the feature request gets enough votes so we can force the users to change their password on their first login.
    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post