Force password reset email users
It would be VERY helpful in a security sense to force a password change whom use emails services (via roundcube). So if I have 100 users who do not access the panel, but simply have email, they would be forced to change passwords every 30 days?
Anonymous
shared this idea
-
info
commented
Hi, Considering security issues getting more and more restricted every day, with the actual setup where a main user created email accounts complete with password and needs to comunicate the password to the mail account user - the user may then and is encourged to change the password - but the user is not forced to make this change. So if the account user does not change the person who created the account could access the mail account of the user
and all privacy/security policies are not valid.
Please consider this issue AS IMPORTANT
PLEASE -
Wagner K. Arendt
commented
This feature is very important. It is a good information security practice, covered in various frameworks and certifications, such as: ISO27001, NIST, CIS, among others...
Having this feature in the tool gives credibility. -
SpyderZ
commented
As part of PCI-DSS Security this is a required function; add it ASAP please.
-
biodun dahunsi
commented
Please add ....please and please we need this function
-
AmaZili Communication
commented
What would be nice to have is multiple rules for password changes like every xx days, but not only, one nice rule would be force password reset when account not being used for a while.
-
YongSan
commented
Enable option to force email users to reset their password every 30days just like how Microsoft Exchange had the option.
-
Anonymous
commented
Mayby also include a temporarily password that needs to be changed on logon.
-
Anonymous
commented
Please add this!