Child pages
  • Password Strength Configuration
This documentation is for cPanel & WHM version 80 EDGE builds.  The "RELEASE" version of our documentation can be found in the Version 78 Documentation space.


Skip to end of metadata
Go to start of metadata

(WHM >> Home >> Security Center >> Password Strength Configuration)

Overview

This feature allows you to define minimum strengths for passwords for all of cPanel & WHM's features that require password authentication.

The system rates password strength on a scale of 0 to 100, where 100 represents a very strong password.

Warning:

 Users with shell access can bypass these requirements with the passwd command.

How to set minimum password strengths

Notes:

  • We recommend that you set the value of Default Required Password Strength to 40 or greater.
  • When you set a minimum password strength, the system automatically rounds this value up to the nearest increment of 5.
  • By default, this requirement only applies to new accounts. To enforce this requirement for existing accounts, you must enable the Password Strength setting in WHM's Configure Security Policies interface (WHM >> Home >> Security Center >> Configure Security Policies).

To set the minimum password strengths, perform the following steps:

  1. To specify the default minimum password strength for features that you set Default, use the Default Required Password Strength slider or enter a number between 0 and 100 in the appropriate text box.
  2. To configure a minimum required password strength for a specific feature, use that feature's slider to specify its minimum password strength, or enter a number between 0 and 100 in the text box.
  3. Click Save to save your changes.

Additional documentation