- Administrators: You, your virtual assistant, your web designer - anyone who has complete access to your site.
- Editors: Anyone who can publish blog posts or pages on your site.
- Authors and Contributors: Anyone who writes for your site.
- Subscribers: Anyone - including commentors on some sites - who must log in to access certain features of your site.
All of these user groups can potentially compromise your site if users are not regularly updating their passwords.
Using Force Password Update ensures that every user from administrators on down is required to keep his or her password fresh. Best of all, it's a true "set it and forget it" system for you. Once you install it, the plugin does all the work.
How Force Password Update Works
You could - if you have a lot of free time on your hands - ask all your users to regularly change their passwords. You could even do it for them, thereby forcing them to update when they can no longer log in.
And if you only have a couple of users and an infallible memory, that might work for you.
But for the rest of us, an automated solution is best. With this plugin, that's exactly what you get. It offers...
- Easy installation - simply upload the file to your site and activate
- Simple configuration screen - gives you total control over the user experience
- The ability to set your own expiration period based on the level of risk you feel is acceptable
- Customizable message to users when you first install the plugin - so they're not confused by the sudden change
- Customizable message to users when they are forced to update their password - so they know exactly why they're being asked to update
- The option to give administrators a pass by not forcing them to update
- An additional field in the user profile so you can tell at a glance how old your users' passwords really are
- Multi-site license - use it on every site you own.
And nothing more for you to do - ever. Because once you install and activate this plugin, your users will be automatically prompted to update their passwords on the schedule that YOU control.
It continues to work quietly in the background, helping to keep your site secure, for as long as you leave it activated.
Best of all, users won't be inconvenienced at all, since the plugin uses WordPress's built-in password update system. They won't have to fiddle around waiting for your help desk to respond. All they have to do is check their email - everything happens automatically.