Authentication
/
Password & passwordless
/
Passwords
/
Management
Last updated

Managing passwords for environments and accounts

Frontegg provides flexible password management at both the environment and account levels, allowing you to enforce security policies tailored to your needs.

Managing passwords for environments

To enhance security and control over user authentication, Frontegg allows you to enforce password policies at the environment level. These settings help you define password complexity, history, expiration, and email verification requirements.

Access environment password setup

To set environment passwords, go to [ENVIRONMENT] → Authentication → Password.

Set password complexity

Set password complexity by choosing the required password complexity level:

  • Easy: Minimum of 6 characters, avoiding 3 recurring characters.
  • Medium: Minimum of 8 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
  • Hard: Minimum of 10 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
  • Custom: Define a specific length. To set a custom complexity, click Manage Custom, set the required length.

password-setup-1

Set password history

If you want password history, toggle Password History on and set the number of new, unique passwords a user must create before reusing an old one.

password-setup-2

Set email verification

If you want to require email verification, toggle Email Verification on. This will require users to confirm their email address to complete sign-up and set a password.

password-setup-3

Set password expiration

If you want password expiration, toggle Password Expiration on and set the number of days until user passwords expire and require renewal for security.

password-setup-4

If needed, toggle Password Expiration Prompt on and set the number of days before expiration when users will be prompted to reset their password.

Save changes

Click Save to apply the settings.

Managing passwords for accounts

At the account level, Frontegg enables granular password management, allowing you to apply specific security policies to specific accounts within an environment. These settings help control password complexity and expiration rules.

Access environment password setup

To set environment passwords, go to [ENVIRONMENT] → Accounts → <Account> → Security → Password → Manage.

Set password complexity

Set password complexity by choosing the required password complexity level:

  • Easy: Minimum of 6 characters, avoiding 3 recurring characters.
  • Medium: Minimum of 8 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
  • Hard: Minimum of 10 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
  • Custom: Define a specific length. To set a custom complexity, click Manage Custom, set the required length.

password-setup-5

Set password expiration

If you want password expiration, toggle Password Expiration on and set the number of days until user passwords expire and require renewal for security.

password-setup-4

If needed, toggle Password Expiration Prompt on and set the number of days before expiration when users will be prompted to reset their password.

Save changes

Click Save to apply the settings.