Securing user accounts and passwords

Passwords are a critical part of any authentication process. Kentico provides various password‑related features that you can leverage to achieve the level of security required by your website.

These settings can be found in Settings -> Security & Membership -> Passwords.

The features include:

• A set of secure format options for storing user passwords
• Resetting of user passwords. See:
  • Enabling password resets (Portal Engine sites and the administration interface)
  • Implementing password reset functionality for MVC sites

For Portal Engine sites and the administration interface, you can also set up:

• Password strength and other policies to enforce specific requirements
• Expiration time that requires users to periodically change passwords
• Locking of user accounts when an incorrect password is entered too many times