Managing passwords for environments and accounts

Frontegg allows you to define and enforce secure password policies across your platform. As an admin, you can manage password settings globally at the environment level, override them for specific accounts, and even assist individual users with password resets — all through the Frontegg portal.

These controls help you meet your organization’s security standards while providing a flexible user experience.

Environment-level configuration

Environment-level policies act as the global baseline for all users unless overridden by stricter account-level rules. To set environment passwords, go to [ENVIRONMENT] → Authentication → Password.

Each setting is described below. Once your settings are configured, click Save to apply them.

Password complexity

Define how strong passwords need to be. You can choose from preset levels or create a custom rule:

• Easy: Minimum of 6 characters, avoiding 3 recurring characters.
• Medium: Minimum of 8 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
• Hard: Minimum of 10 characters, including at least one uppercase letter, one lowercase letter, one number, and one special character, while avoiding 3 recurring characters.
• Custom: Define a specific length. To set a custom complexity, click Manage Custom, and set the required length.

Password history

Prevent users from reusing recently used passwords by specifying the number of unique passwords required before reuse. Just toggle Password History on and set the number of new, unique passwords a user must create before reusing an old one.

Email verification

Require users to verify their email address before creating a password. If enabled, users receive a verification email during sign-up. To enable email verification, toggle Email Verification on.

Password expiration

Set the number of days after which a user’s password must be updated. You can also configure how many days before expiration a prompt should appear. To do this, toggle Password Expiration on and set the number of days until user passwords expire and require renewal for security.

If needed, toggle Password Expiration Prompt on and set the number of days before expiration when users will be prompted to reset their password.

Account-level configuration

Account-level policies let you enforce stricter password rules for specific tenants, overriding the environment defaults. This is useful when particular customers (e.g., enterprise clients) require enhanced security.

To manage these settings, go to [ENVIRONMENT] → Accounts → <Account> → Security → Password → Manage.

You can configure:

• Password complexity

  

• Password expiration

  

These work exactly as described in the environment-level section above. You can choose a preset or define a custom rule for complexity, and set expiration periods along with prompt windows.

Resetting passwords for individual users

If a user is unable to log in or requests support, you can manually send a reset password email directly from the User page.

To do this:

1. Go to [ENVIRONMENT] → Management → Users.
2. Click on a user to open their profile.
3. Click the Send email button in the Send a reset password email to the user section.

The user will receive an email with a secure link to set a new password.