Child pages
  • Password Strength Configuration
For cPanel & WHM version 74

Skip to end of metadata
Go to start of metadata

(WHM >> Home >> Security Center >> Password Strength Configuration)

Overview

This feature allows you to define minimum strengths for passwords for all of cPanel & WHM's features that require password authentication.

The system rates password strength on a scale of 0 to 100, where 100 represents a very strong password.

Warning:

 Users with shell access can bypass these requirements with the passwd command.

How to set minimum password strengths

Notes:

  • We recommend that you set the value of Default Required Password Strength to 40 or greater.
  • When you set a minimum password strength, the system automatically rounds this value up to the nearest increment of 5.
  • By default, this requirement only applies to new accounts. To enforce this requirement for existing accounts, you must enable the Password Strength setting in WHM's Configure Security Policies interface (WHM >> Home >> Security Center >> Configure Security Policies).

To set the minimum password strengths, perform the following steps:

  1. To specify the default minimum password strength for features that you set Default, use the Default Required Password Strength slider or enter a number between 0 and 100 in the appropriate text box.
  2. To configure a minimum required password strength for a specific feature, use that feature's slider to specify its minimum password strength, or enter a number between 0 and 100 in the text box.
  3. Click Save to save your changes.

Additional documentation