System-wide password policies are accessible from the Password policies link in the General User Settings dialog box, that can be opened from the Users panel. The Password Policies dialog is shown below. For security reasons, it is recommended that must have at least 8 characters, must be mixed-case and must contain a digit are enabled.
Permit password changes is enabled by default in new trial installations, but are disabled by default otherwise. When enabled, non-Windows users are able to change their password, but none of the other inbuilt authentication methods (i.e. Windows, AD, gateway, external and SAML) allow password changes. Custom authenticators may define a way to change password.
There are multiple ways that a user can change their password:
CompleteFTP supports forced expiry of the passwords of non-Windows users. This functionality is controlled by two settings: Require change after N days and Expire after N days. Both of these are not set by default, meaning that passwords never expired.
When the Require change after N days setting is set, a non-Windows user will be forced to change their password if it's been more than N days since the last time they changed their password, but only if they're not logging in via FTP. FTP has no mechanism for forcing users to change their password, so they're simply shown a warning. In SFTP, SSH, HTTP and HTTPS, the user won't be given access to any files until they've changed their password.
When the Expire after N days is set, a non-Windows user will be blocked from accessing the server if it's been more than N days since they changed their password. This happens for all protocols.
The password expiry settings have no effect on Windows users or users who authenticate via other means, such as SAML, databases and gateways. The reason for this is that CompleteFTP doesn't control these passwords.
Users who have forgotten their passwords can use the forgot/reset password feature to set a new password. To do this they must:
The 'Forgot password?' link will be visible only if:
passwordResetEnabled = true;
The password reset message will only be sent to the user if:
Users won't be informed if the password reset message could not be sent as this would allow attackers to discover valid user-names. The reason for the failure will be written to CompleteFTP's log file, though.
Store encrypted passwords is not enabled by default. Usually, passwords for non-Windows users are not stored for security reasons. Instead, a hash of the password is stored, and when users log in, the hash of the password they supply is compared with the stored hash.
If Store encrypted passwords is enabled, passwords for non-Windows users will be stored in encrypted form. This is less secure than using a hash, but does mean that the adminstrator is able to retrieve passwords.
Note that Windows users do not have passwords stored by CompleteFTP in any way. Instead, standard Windows authentication is used.
Must be mixed-case, must contain a digit, and must contain a special character are not enabled by default.
Any passwords that are less than the Minimum password length will be rejected.