Setting password requirements

You setup the requirements for a user password, how passwords are stored, and how passwords are delivered via Sitefinity settings. To setup password requirements for the users of your website, perform the following:

1. In the main menu click Administration » Settings.
   The Basic Settings page appears.
2. Click Advanced.
   The Settings page appears.
3. In left menu click Security » Membership Providers.
4. Click the provider that you want to configure and then click Parameters.
   All parameters appear.
   • To choose the format in which passwords are saved, click passwordFormat property on the left.
     In Value input field, enter one of the following and click Save changes:
     • Clear
       Passwords are not encrypted.
     • Hashed
       Passwords are encrypted one-way using a hashing algorithm.
     • Encrypted
       Passwords are encrypted.
   • If you want to enable or disable users to be able to reset their password, click enablePasswordReset.
     1. In Value input field, enter true to enable or false  to disable the users to reset their passwords.
        Click Save changes. By default, password recovery is disabled.
     2. Click recoveryMailAddress and in Value, enter the email that will appear when the new password is sent to the user.
        Click Save changes. By default, there is no value set as recovery email, if you do not set it, password recovery will not work.
     3. Click recoveryMailBody and, in case you do not want the username to appear together with the password, in Value input field, delete <br />User Name: <%\s*UserName\s*%>.
        Click Save changes.
     4. Click recoveryMailSubject and in Value, enter the subject that will appear when the new password is sent to the user.
        Click Save changes.
     5. NOTE: To enable Sitefinity to send e-mails, you must have configured the SMTP settings. For more information, see Configuring SMTP setting.
5. You can also change other parameters if required.