Hello Steven,
In the latest version of SmarterMail, an administrator's ability to view a user's password is depenedent on their account setting:
- The primary System Administrator account should be able view user passwords by default. They have an account permission, 'Allow show passwords while impersonating', that is defaulted to on; however, they can turn that setting off, if they wish.
- A secondary System Adminstrator's ability to view user passwords is dependent on their account's 'Allow show passwords while impersonating' setting.
- Domain Administrators may also view user passwords if the domain's "Show Passwords to Domain Admins" feature is enabled.
If a system or domain administrator can view a user's password, they will be able to see the user's standard account password as well as their app passwords, if the user's account is protected with 2-Step Authentication. Passwords can be viewed by managing the domain, going to Domain Settings > Accounts and editing the user. On the Password field(s), click the icon that looks like an eyeball to display the password.
If a system administrator account has password permission, they'll also be able to retrieve a user's password via the API. In addition, system administrators can generate an additional, temporary user password in order to troubleshoot account issues.
If one of your system administrators is not able to view user passwords, please log in with the primary admin account (or another sys admin account that has 'Manage secondary administrators' enabled) and check their setting for 'Allow show passwords while impersonating'.