Password Strength in WPMS

  • mburtis

    (@mburtis)


    7 years, 8 months ago

    We are running version 6.1.14 of WordFence in a multisite environment. We’ve checked off the option to enforce password strength requirements, but when a user resets a password through the “Lost Your Password” interface (they get an email with a link to a page to change their pw), password strength is not being enforced. I can change my password to “password”

    Since we’re on an older version of WPMS, do we need to use an older version of WF until we upgrade?

    https://wordpress.org/plugins/wordfence/

Viewing 2 replies - 1 through 2 (of 2 total)
  • wfasa

    (@wfasa)

    7 years, 8 months ago

    Thanks for reporting this mburtis. I will investigate and get back to you asap.

    wfasa

    (@wfasa)

    7 years, 8 months ago

    Hi mburtis,
    I tested this but was not able to reproduce the bug. When I try to change password via password reset to “test” I get this notice “Please choose a stronger password. Try including numbers, symbols and a mix of upper and lower case letters and remove common words.”

    Are you sure you have selected to “Enforce strong passwords for all users”? Perhaps you set it to only be for admins and publishers. Let me know how it goes!

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Password Strength in WPMS’ is closed to new replies.