Table of Contents
Setting a password policy in FotoWeb
28. February 2025
Table of Contents
A password policy can be created in FotoWeb to ensure that all users have passwords of a certain complexity to aid security.
The password policy applies:
- when users sign up for a FotoWeb account online.
- when users change their existing password.
- when users have forgotten their password and choose to reset it.
The password policy does not apply to users created by the system administrator in the FotoWeb configuration in the Operations Center or to accounts imported from an Active Directory. In the case of an AD integration, a Windows network password policy can be set to accomplish the same.
Creating a password policy
From the Tools menu (cogwheel icon), go to Site Configuration > Security > Login and sessions. The password policy settings are in the Passwords section.
Select Enforce password policy and enter a regular expression (external link, Wikipedia) to control the password complexity. The Validation help text field can be used to inform users in plain text about the password requirements.
Allowing users to reset their password
Users can request a password reset by turning on the Enable "Forgot Password?" toggle if they forget their passwords. Note that this will not be possible when using an external identity provider such as Microsoft Entra ID. In that case, the password needs to be reset directly with the identity provider.