Password Expiration

Password Lifespan

What It Does

This module allows you to set password expiration policies, requiring users to change their passwords after a certain period of time. You can configure how many days passwords remain valid before expiration.

This helps ensure that compromised passwords don't remain valid indefinitely. Even if someone discovers a password, it will expire after the configured time period, forcing users to create a new password.

When configuring password expiration, you can set the lifespan in days. Recommended: 30 days. Set to 0 if you want passwords to never expire.

Why It Matters

Login attacks are one of the most common ways attackers try to gain access to WordPress websites.

By strengthening your login security, you significantly reduce the risk of unauthorized access to your website.

How to Use

Activate this module in the Users & Login section of SecuPress settings.

Once activated, the module works automatically and provides protection for your website.

If you encounter any issues after activation, you can temporarily deactivate the module. The module will automatically remove its protection rules when deactivated.