Back to Community Threads
1
SM 13...Is there a demo/video somewhere of the password expiration?
Question asked by Jim Vaden - 11/14/2014 at 9:49 AM
Answered
I'm curious to know how this will work for the end users.  Is there a self service screen?  What about users that use IMAP with Outlook?  Are they prompted? 

5 Replies

Reply to Thread
2
Employee Replied
11/14/2014 at 1:06 PM
Employee Post Marked As Answer
Webmail users will be forced to change their password when they login to webmail (when the password has expired).
 
Users will also be notified via email before the password expires.  The system administrator can set the dates before expiration that a user will be notified.  By default those notifications are sent out 28, 14, 7, 3, 2 and 1 day(s) before their password expires.  So accounts that do not use webmail will get plenty of notifications before their outgoing messages get blocked.
 
We don't have a video for this.
0
Jim Vaden Replied
11/14/2014 at 1:36 PM
Thanks Bryon! Is there some documentation other than release notes?
0
User Replied
11/14/2014 at 2:00 PM
Our Online Help for SmarterMail 13 for the Password Requirements page has an explanation of the expiration feature and what the notification timings are:

Password Expiration - The number of months that a password is valid. After the specified time, a user’s outgoing SMTP will be disabled and a password change will be forced upon Web interface login. Check the Enabled box to enable this setting.

User Notification Timing - The interval(s) used to notify users of when their password will expire or when their auto-block grace period will end and, subsequently, their outgoing SMTP will be disabled. The default values are 28, 14, 7, 3, 2, 1 days. This means SmarterMail will send out warning messages to the user to change their password 28 days, 14 days, 7 days, 3 days, 2 days and 1 day before their password officially expires or the grace period ends if their password violates the requirements. Note: SmarterMail will send one, single notification for all missed intervals. For example, imagine "Auto-block Grace Period" is set for 30 days and the "User Notification Timing" is set at 60, 45, 25, 10, 2, 1. When a user is in violation, SmarterMail will send a single notification for the 60 and 45 day intervals then continue as normal at the 25 day interval.

We also have a KB article on setting the password policy which includes setting up the password expiration:

http://portal.smartertools.com/kb/a2750/set-up-a-password-policy.aspx
0
Andrea Free Replied
11/14/2014 at 2:56 PM
Employee Post
Here's the URL of the Help page Bryon mentioned:

http://help.smartertools.com/SmarterMail/v13/Topics/SystemAdmin/Security/Advanced/PasswordReqs.aspx
Andrea Free SmarterTools Inc. 877-357-6278 www.smartertools.com
0
Jim Vaden Replied
11/20/2014 at 10:39 AM
Thanks everyone for the help!
Do these password rules even come into play if you are using Active Directory?
Back to Community Threads

Reply to Thread

Related Knowledge Base Articles

Deploying Rspamd For Use With SmarterMailSmarterMail > Server Configuration and Management
Set up SmarterMail as an IIS Site in IIS 8SmarterMail > Server Configuration and Management
Troubleshooting SmarterMail Automatic SSL CertificatesSmarterMail > Troubleshooting
Manually Securing SmarterMail Using Let's Encrypt and Certify the WebSmarterMail > Installation and Configuration
Configure POP for iPhone, iPad or iPod TouchSmarterMail > Desktop and Mobile Synchronization