Rank: Member
Joined: 10/11/2006(UTC) Posts: 162
Thanks: 1 times
|
So I'm working on an upgrade installation for one of my clients to get them up to 5.7.3. I notice that in the users options area, password length is currently set to 4 and PCI compliance requires 8. I'm wondering what others are doing for this? If I set it to 8, I imagine the store will not allow existing users to login and force them to manually reset their password. This seems like a huge headache for a store with 15K customers.
Any recommendations or suggestions?
Thanks,
Greg
|
|
|
|
Rank: Member
Joined: 6/28/2010(UTC) Posts: 38
|
Another weird thing about passwords - I recently imported 9937 new users into a private store running version 5.? ( brand new 7/30/10)
If I try to modify ANYTHING on the "Edit User" page ( users_edit.aspx) it will not let me , it shows an error message that says that the password cannot be the same as the last 3.
the only way to save my changes, is to save it with a different password
If I want the original password to stay with this user, I have to change the password 4 times, finally setting it back to the original.
blaaaaah!
|
|
|
|
Rank: Member
Joined: 11/5/2003(UTC) Posts: 1,786
|
5.7.3 resolves the issue with customer password expirations and only requires admin account passwords to expire. Password length requirements still apply to all users. A password of at least 8 is required for PCI compliance.
|
|
|
|
Rank: Member
Joined: 1/3/2007(UTC) Posts: 23
|
Any time you need to edit a user you have to change their password...has anyone come up with a solution to this problem?
This is a major issue on one of our sites because admins frequently need to go in and change user settings without modifying the user's password.
|
|
|
|
Forum Jump
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.