Password Complexity Enforcement
Define and Enforce Password Complexity Rules
Ensure users create sufficiently long passwords with the required combination of characters.
- Enforce the use of uppercase, lowercase, digits, special characters, and/or unique characters
- Set minimum and/or maximum password length
- Limit the use of consecutive symbols from the user’s name or display name
Restricted Passwords List
Prevent Usage of Common Passwords
With over 100,000 common passwords on our list, you can rest assured that users won’t be able to use them to access your WordPress website.
- Ensure users don’t use weak passwords
- Update the list anytime to meet your unique needs
Dedicated Policies by User and/or Role
Create Dedicated Password Policies for Different User Groups
Define multiple password policies and assign them to specific users based on their role or username, ensuring greater flexibility and control.
- Assign policies by user role
- Assign policies by username
- Apply a policy to all users at once
Healthy Passwords Retention
Protect Your Website by Enforcing Regular Password Updates
Ensure your website’s security by defining clear password retention rules, reducing the risk of compromised accounts.
- Control minimum and maximum password age
- Prevent overly frequent password changes to support password reuse prevention
- Enforce healthy password retention policies
Passwords Reuse Prevention
Prevent Reusing the Same Passwords
Ensure users create a completely new password instead of reusing old, “favorite” ones.
- Promote healthy password practices
- Reduce the risk of compromised passwords
Quick Start
Get Started in Three Simple Steps
We’ve made the plugin setup and configuration process as straightforward as possible – without sacrificing flexibility or powerful functionality.
Need any support with getting started? Review the plugin’s documentation and tutorials or contact us.
Quick Preview
Live Demo & Screenshots
Want to see this plugin in action? Take the quick look at the screenshots below, or launch the demo site.
Video Walkthrough
Watch the plugin walkthrough video to explore all of its key features and available options.
Live Demo
Launch a demo of the Pro version of this plugin in a private, temporary environment.
You can explore the plugin freely – the test environment is dedicated exclusively to you and will automatically expire after 4 hours.
Vision Statement
Why Should You Use This Plugin?
WordPress does not enforce strong passwords by default, allowing users to choose passwords that may be easy targets for hackers, such as “password,” “admin,” or “123456.” According to various security reports, weak passwords remain one of the most significant security threats worldwide.
This vulnerability becomes especially critical if users with higher-level permissions (such as administrators), access to sensitive user accounts, site settings, or plugin management screens, use weak passwords.
This plugin allows site administrators to create and enforce password policies, requiring all or specific users to use passwords compliant with defined security standards. You can apply policies to everyone, specific users, or particular user roles.
This helps prevent users from selecting weak passwords by letting you set password complexity requirements, password expiration rules, and more. See the complete list of features for additional details.
You’re in a Good Company
We Take Customer Satisfaction Seriously
Customer satisfaction is a core value of our business. From our dedicated support team and extensive documentation to our money-back guarantee, we’ve got you covered every step of the way.
Professional Support
Our dedicated support team is ready to answer any questions you may have.
Extensive Documentation
Access a comprehensive library of documentation and tutorials designed to help you make the most of this plugin.
30-Day Money-Back Guarantee
Our no-questions-asked refund policy ensures your purchase is completely risk-free.
Not Sure? Start with the Free Version
Install the free version of the plugin and create your first password policy in just a few minutes.
FAQ
Find Answers to Common Questions
Browse these frequently asked questions to get quick answers about our plugin, features, and support.
Will This Plugin Work on My WordPress Website?
This plugin does not depend on any third-party libraries, plugins, or themes. It will work seamlessly on any WordPress website unless your site uses a solution that modifies the default login functionality – such as single sign-on (SSO), social login, or passwordless authentication.
Does the Plugin Support My Language?
This plugin is translation-ready, enabling you to easily translate its content into your preferred language using any translation tool or plugin. By default, the plugin is provided in English.
What Are the Technical Requirements for This Plugin?
This plugin requires WordPress version 6.6 or later and PHP version 7.4 or later. It doesn’t require additional libraries or special hosting configurations.
The plugin has been tested up to WordPress 6.7 and PHP 8.3.
What Is Your Refund Policy?
We offer a risk-free, 30-day money-back guarantee. If you’re not satisfied with the plugin for any reason, you can request a full refund within 30 days of your purchase – no questions asked.
Is This Plugin Actively Maintained?
Yes! This plugin is actively maintained and regularly tested for compatibility with the latest versions of WordPress and PHP. For detailed information about updates, please refer to the changelog.
What Happens If I Don’t Renew My License?
You can continue to use the plugin even if your license expires; however, you will no longer receive plugin updates, new features, or access to support. Your license renews automatically each year unless canceled via the Customer Portal.
How Are the Password Policies Defined?
Password policies are defined on the plugin settings page. You can create as many – or as few – policies as you need.
When creating a new policy, its settings are automatically populated with recommended rules and values, which you can freely adjust and customize.
What Happens When a User’s Password Doesn’t Comply with the Matching Password Policy?
There are two scenarios when this plugin verifies whether a user’s password complies with the matching password policy:
Scenario 1: During User Login
After a successful login, the plugin checks if the user’s password complies with the current password policy. If the password complies, the user will proceed uninterrupted. However, if the password is non-compliant, the user will be logged out of WordPress and prompted to reset their password.
The user must set a new password that meets the policy requirements before they can log in again and continue using their WordPress account.
Scenario 2: During Password Reset
When a user resets their password—either through the “Forgot Password” form or via their user profile—the new password must comply with the applicable password policy. The plugin prevents users from setting passwords that don’t meet these requirements.