Password security

The password security settings control password security for backend login as well as frontend login. For each of the password security areas you have the following settings:

• Expiration: Use to set the password expiration interval
• Reuse password after number of times: Set the number of passwords required before an old password can be reused
• Reuse password after number of days: Set the number of days which must pass before a password can be reused
• Complexity: Set the password complexity level
  • Low: No restrictions
  • Medium: Password must contain numbers and characters
  • High Password must contain numbers, upper and lower case characters, and special characters
• Minimum number of characters: Set the minimum number of characters a password must contain

The password security for backend login further has the setting:

• Recovery token timeout: Set the number of hours for which the recovery token is active

A similar setting for the extranet app can be found on the paragraph app settings

All passwords are encrypted with SHA512-encryption by default.