Set Up a Password Policy

This article applies to recent versions of SmarterMail. View articles for SmarterMail 15.x and earlier.

To ensure the security of email accounts, system administrators can specify minimum requirements for user passwords. For example, by requiring passwords that include both uppercase and lowercase letters, numbers and symbols, administrators can ensure users don't use weak passwords. In addition, it's possible to enable other safeguards such as preventing users from simply re-entering their previous password or using passwords that are commonly used, and therefore easily guessed. Finally, system administrators can disable user accounts once their passwords expire by automatically disabling SMTP access. This will force users to change their passwords so that they can continue using SmarterMail.

Follow these steps to configure password requirements for user accounts:

  1. Log in to SmarterMail as the System Administrator.
  2. Click the Settings icon.
  3. Click Password Requirements in the navigation pane. The password requirement settings will load in the content pane. 
  4. The settings available will vary depending on the SmarterMail version. To specify requirements, toggle the appropriate options. 
  5. Click Save.

Follow these steps to enable a password expiration policy:

  1. Login to SmarterMail as the system administrator.
  2. Click the Settings icon.
  3. Click Password Requirements in the navigation pane. The password requirement settings will load in the content pane.
  4. In the Expiration card, first toggle ON "Passwords expire automatically".
  5. Next, type the number of months until a password needs changed in the appropriate text field. 
  6. Adjust the User Notification Timing accordingly. These time intervals will be used to notify users when their passwords will expire.
  7. Next, toggle ON "Disable outgoing mail after grace period ends" if you want to stop users from sending email once their passwords expire. If SMTP disabling is enforced, the User Notification Timing intervals will be used to notify users when their auto-block grace period will end and, subsequently, their outgoing SMTP will be disabled.
  8. Click Save.
Learn more about SmarterMail's enterprise email features and benefits.


Can you disable password changes on certain email accounts such as printers, backups, etc?
Benjamin Breedlove (3/15/2019 at 6:48 AM)
Yes, you can Benjamin. Just edit the Account, and on the User card, there's a toggle for "Disable password changes". This is in both 16.x and the current builds.
Derek Curtis (3/18/2019 at 6:02 AM)