Setting a minimum password length
Improve account security by setting a minimum password length.
Setting the password length
By default, passwords must be at least 8 characters long. However, you can choose to set this to a different value. We do not allow password length to be set to 0 characters but will accept 1 character and above. You will need to contact our Support Team at email@example.com to request this. They will make a minor change to your Firefly configuration file, which will take effect overnight.
What this means for users
The minimum length requirement only applies when creating a new password or changing an existing one. Users who currently have shorter passwords will not be affected and will still be able to log in with their usual credentials.
Users changing their own passwords and administrators changing a password via Modify User in the Control Panel will be warned if the chosen password is too short. They will not be able to save their changes until the password meets the length requirement.
Getting users to change their password
After applying this change, you can reset all your users' passwords so that they match the new minimum length. To do this:
- Open the Control Panel and select Users > Reset password(s).
- Type the name of a person or group (for example, Students).
- Choose Password Reset. A CSV file containing randomly generated passwords will automatically be downloaded.
- Inform users of their new password, which they can either keep using or change to something else that meets the minimum length requirement.
Alternatively, you can simply contact all users and ask them to change their passwords by following these instructions.