Page tree
Skip to end of metadata
Go to start of metadata

For cPanel & WHM version 66

(Home >> Security Center >> Password Strength Configuration)

Overview

This feature allows you to define minimum strengths for passwords for all of cPanel & WHM's features that require password authentication.

The system rates password strength on a scale of 0 to 100, where 100 represents a very strong password.

Warning:

 Users with shell access can bypass these requirements with the passwd command.

How to set minimum password strengths

To set the minimum password strengths, perform the following steps:

  1. To specify the default minimum password strength for features that you set Default, use the Default Required Password Strength slider or enter a number between 0 and 100 in the appropriate text box.
  2. To configure a minimum required password strength for a specific feature, use that feature's slider to specify its minimum password strength, or enter a number between 0 and 100 in the text box.
  3. Click Save to save your changes.

Notes:

  • We recommend that you set the value of Default Required Password Strength to 40 or greater.
  • By default, this requirement only applies to new accounts. To enforce this requirement for existing accounts, you must enable the Password Strength setting in WHM's Configure Security Policies interface (Home >> Security Center >> Configure Security Policies).

Additional documentation