1 Topic by bigweb

  • bigweb
  • Member
  • Offline
  • Registered: 2017-08-14
  • Posts: 29

Topic: A way of forcing users to change their passowrd to a stronger ?

==== Required information ====
- iRedMail version (check /etc/iredmail-release):      0.9.8
- Linux/BSD distribution name and version:
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Apache
- Manage mail accounts with iRedAdmin-Pro? YES
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

Hi, we have ~ 600 Email accounts on a server , some of them really old with very simple passwords (like 3 letters) from long long ago . Is there a way of :

a. Sending each client an email that he needs to change password to a stronger one with a link bringing him to a pass change page immediately .
b. Password should be changed using password policy (on server)
c. System should log WHO has changed password already (so we can see a list of stong/weak passwords users) , and re send another email in 1-2 weeks

Is there any script that could allow this to be done ?

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 30,789

Re: A way of forcing users to change their passowrd to a stronger ?

Try this tutorial:
https://docs.iredmail.org/force.user.to … sword.html

a. you can send this email manually.
b. if you enable self-service in iRedAdmin-Pro, you can ask users to login to iRedAdmin-Pro and change password. Or, login to Roundcube webmail to change password.
c. both iRedAdmin-Pro and Roundcube will log the date user changed password in database "vmail", sql column "mailbox.passwordlastchange".