Enforce Password Reset and Login

Creation date: 10/12/2025 11:59 PM Updated: 10/13/2025 10:17 PM user login

i.PasswordAgingDays: The amount of days that the password will last until the reset day.

Sample Configuration: <add key="PasswordAgingDays" value="10" />

(If no needed can set to 0)

Example: User password last modified date is 2025-10-01 06:43:56.477and PasswordAgingDays had set to = 10 (Tested date at 13/10-2025). It will prompt error below.

ii. UserResetPasswordRequired: This will trigger every time a new user is created(new create user) using maintenance > user account page, the new user will require to change the password for first time login.

Sample Configuration: <add key="UserResetPasswordRequired" value="true" />

(If no needed can set to false)

A new user created at Maintenance > User Account page

When admin4 try to login the message will appear, therefore user need to update the account password.

iii.PasswordRequirement: To set the password strength / format

Sample Configuration: <add key="PasswordRequirement" value="^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).{8,}$" />

(If no needed can leave it blank)

If the field is set to ^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).{8,}$, when changing the password the password need to follow criteria below

-At least 1 uppercase letter

-At least 1 lowercase letter

-At least 1 digit

-At least one symbol

-8 or more characters total

iv.SendLoginFailureAlertToUserRole: Send alert email to the specific user role is an account had been locked after several attempts of failed login.

Sample Configuration: <add key="SendLoginFailureAlertToUserRole" value="admin" />

(If no needed can leave it blank)

User is required to further maintain the 4 parameters below in order for the auto email to work properly. (Provided sample as below)