Password Policy Manager | Password Manager
Password Policy Manager | Password Manager
Description
Features | Setup Guide | Documentation
Enforce Strong and Secure Password Policies with Password Policy Manager
The miniOrange Password Policy Manager plugin helps you enforce strong and secure password policies with features like password reset, password expiry, password score, and strong password rules.
You can manage user passwords efficiently using the user password manager, password strength meter, and history manager to enhance overall password security.
In case of a breach, take quick action with one-click password reset, lock inactive users, and enforce random password rules.
This ensures complete protection by securing passwords, and managing both active and lock inactive users to prevent password-based attacks.
Have questions? Reach us at mfasupport@xecurify.com
What is the Password Policy Manager Plugin for WordPress?
WordPress plugin for password expiry, strength check, and secure policy enforcement. Easy to install and configure, this Password Security plugin secures your site without disrupting the user experience.
WordPress PPM Key Features (Free Version)
- Enforce strong passwords: Force all users to create strong passwords according to the password policy set by the admin for high Password Security.
- Users password manager: User password manager allows the admin to manage the users’ passwords (like password strength, how many passwords are strong, etc) to check the Password Security. [password policy setup guide]
- Enforce password change: Administrators can force users to change their password on their next login using this functionality use to enforce strong passwords on their users and ensure strong Password Security.
- One click reset password: This feature allows the admin to invalidate the current password and force their users to generate a new strong password. This can be done for all users in case of any breach. This will kill all the current sessions and users will be forced to set a new strong password via email hence reinforcing the Password Security.
- Password Score: It will show all the users’ password strengths. You can check whether the passwords being used are strong, medium or weak. Based on that you can use the enforce strong passwords feature to improve Password Security.
- Auto Password Expiry: This feature allows the admin to enforce a custom time-based password expiry to improve Password Security. Once the password has expired, the users will be forced to create a new password.
- Password strength: The admin can set the minimum and maximum length of the password. You can also add constraints that you want your users to follow while setting a strong password.
- Unlimited Users: There is no user limit on the password policy manager plugin and it can be used to create password policies for unlimited users.
Which Key Features does Password Policy Manager support in the Enterprise Plan?
- Role-Based Enforce Strong Password on First Login: Force specific users roles to create strong passwords according to the password policy set by the admin on their first login.
- User-Based One-click password Reset and Logout: Admin can reset passwords of users at once and terminate their logged-in sessions with just one click in case of any suspicious activity using the One-click reset password. Admin can then send password reset links over email.
- Custom Redirect URL: The admin can redirect their users to a different custom URL using this functionality.
- Active & Inactive Users Activity Log: The admin can track the activity of all active as well as lock inactive users using this tool of the Password Policy Enterprise plan.
- Logout Inactive Users: When this setting is enabled, a user is logged out and their session is destroyed if they are inactive for more than the customizable set time limit.
- Multisite: The Password Policy Manager Enterprise plugin is multisite compatible and can be used to create password policies for an entire multisite network.
For any customization-related queries, reach us at mfasupport@xecurify.com or call us at +1 9786589387.
Upgrade to miniOrange Password Policy Manager Premium Plan for Advanced Security
The premium plan of miniOrange WordPress Password Policy Manager gives you complete control over how users can secure passwords, helping you enforce policies across all roles, customize the login experience, and secure even the most complex WordPress setups.
With the premium Password Policy Manager plugin offers advanced password security features, including role-based and user-based password policies. It also supports custom login forms like WooCommerce, Elementor, Ultimate Member, and more.
Premium Features List
- Role-Based and User-Based Password Policies: Admin can set different [role-based as well as user-based policies] and enforce password policy changes to ensure strong Password Security.
- User-Based Enforce Strong Password on First Login: Force a specific set of users to create strong passwords according to the password policy set by the admin on their first login to maintain strong Password Security.
- Role-Based Enforce Password Change: Administrators can enforce specific sets of roles to change their passwords on their next login using this configuration to enhance Password Security.
- Role-Based One-click password Reset and Logout: Using [one-click reset password]) feature, the admin can reset passwords of all users / particular roles at once and terminate all logged-in sessions with just one click in case of any suspicious activity. Admin can then send the password reset link over email.
- Generate Random Passwords: Generate random passwords generates a random strong password containing all variations to make the password security strong and secure against brute force attacks.
- Automatically Lock Inactive Users: It will lock the user automatically if the user is inactive for the custom-specified time period. This can be set for particular roles as well as users.
- Password History Manager: It will manage the history of all the recently used passwords for each user, so no user can reuse a previous password.
- Active Users Activity Log: The admin can track the activity of all Active Users using this setting of the Password Policy Premium plan.
- Custom Login Forms Supported: The Premium plan also supports the following custom login forms: WooCommerce, Ultimate Member, Elementor Pro, BBPress, Gravity Forms, Ninja Forms, Buddy Press, User Registration, User Pro, MemberPress, and many others.
- Single Site: The Password Policy Manager Premium plugin is single-site compatible and can be used to create password policies on only one site at a time.
Why You Need to Register with miniOrange
Some advanced features in the Password Policy Manager plugin, like one-click password reset and random password generation.
Core functionalities such as enforcing strong password policies, password expiry, password history, and locking inactive users work without registration.
Customized solutions and active support for the miniOrange Password Policy Manager plugin are available. Email us at mfasupport@xecurify.com or call us at +1 9786589387.
Installation
From your WordPress dashboard
- Navigate to
Plugins > Add Newfrom your WP Admin dashboard. - Search for `password policy manager.
- Install
password policy managerand Activate the plugin.
From WordPress.org
- Search for
password policy managerand download it. - Unzip and upload the
password policy managerdirectory to your/wp-content/plugins/directory. - Activate the password policy manager from the Plugins tab of your admin dashboard.
Screenshots
Manual strong password
Check for password strength
Enable Expiration time
User Login Report
Faq
You can enable the Password Policy from the plugin’s Settings tab. Once enabled, features like strong password enforcement, password expiry, and one-click password reset are active.
If a user hasn’t logged in yet, they will be prompted to change their password during login if policies are enforced.
You can enable only the password expiration feature from the Password Policy tab and save the settings. This ensures users reset passwords after a defined period.
- Select “Password Policy Manager” from the WordPress left menu.
- Configure features like strong passwords, password history, auto password expiry, and enforce them.
- Save the settings to apply WordPress password policies site-wide.
The Password Policy plugin lets you enforce strong passwords by defining rules like minimum length, special characters, and uppercase letters during user creation or login.
- Enforces strong and secure passwords site-wide.
- Allows role-based password rules and expiration.
- Supports one-click reset for all users.
- Tracks password history and logout inactive users.
- Offers better control over user password security than most plugins.
Yes, we offer full support and can help you add custom password policy features tailored to your site. Just reach out to our support team.
For any customization-related queries or if you require any assistance, email us at mfasupport@xecurify.com or call us at +1 9786589387.
Reviews
Ok features, but password expiry is PREMIUM
By 
Although the plugin's description claims "Auto Password Expiry" is included in the FREE, it isn't really. What is included in the free version is a 7 week expiry that you can't change. That's misleading - if this was in the description, I wouldn't have bothered installing it.
7 weeks is way too frequent, even corporate giants use 3 months password expiry.
I know you need users to have a reason to upgrade to premium (there are plenty of good premium features) - but without the ability to set our own password expiry, this plugin is just a glorified password strength enforcer (Wordfence does that anyway).
Little problem solved
By 
I had a little problem with the page redirect which was solved very quickly and professionally
works great
By 
does what you need it to do. customer service is super responsive!
Great features and support !
By 
We have many websites, and it became a problem to follow and maintain password policy across all sites.
Tested several solutions and came across miniOrange - Password Policy Manager and it performed very well.
Their support has been amazing, and they have made some extra professional customization to fit our exact requirements.
We would recommend it for anyone to use 😊
Well thought out plugin with excellent support
By 
We're using this plugin on a site where strong passwords and password compliance are a must, and Password Policy Manager does a wonderful job.
The interface is clear and has everything we need without being overwhelming with options.
The plugin has been made with attention to detail and has some nice touches that make it easy for users to set a password that matches the policies set in the admin. This way it helps create a good user-experience.
Best of all, the developers offer excellent support, both in the free and premium versions.
Five stars! ⭐⭐⭐⭐⭐
Good for my customers to prevent easy passwords
By 
Since the first hour of creating new wordpress-blogs we are under constant attack. I have to prove that the people I take care of don't use easy passwords for laziness. I do not have any trouble, works great for me.
Destructive Plugin
By 
I installed this plugin briefly on a production server (bad idea!) to evaluate, not expecting it to destroy existing protection on sensitive pages. This happened simply by activating the plugin. If you have password-protected pages, those pages will instantly lose their protection once this plugin is employed. Thankfully, I only had one page to fix, but it was still a catastrophic discovery since I only discovered the issue randomly and after 10 hours had passed.
A security plugin should at the minimum not make a site less secure once it is installed. I hope the development team of this plugin will make the appropriate changes to prevent this kind of behavior in the future.
Great plugin, Excellent support!
By 
Great plugin, great support!
By 
not working
By 
Changelog
2.0.6
- Security Fixes – User Profile
2.0.5
- Vulnerability Fixes
2.0.4
- Code Optimizations
2.0.3
- Vulnerability Fixes
- Compatibility with WordPress 6.8
2.0.2
- Bug fixes
- Improvement – Password Reset Form
- Compatibility with WP 6.7.2
2.0.1
- Bug fixes
- Code Optimizations
- Compatibility with WP 6.5
2.0.0
- Bug fixes
- Compatibility with WP 6.4
1.5.0
- Bug fixes
- Code Optimizations
- Compatibility with WP 6.2
1.4.6
Updated feedback form
1.4.5
Fixed issues
1.4.4
Changed support and feedback email.
1.4.3
Added end of the year sale banner and changed pricing.
1.4.2
Added language translation support
1.4.1
Compatibility with WordPress 6.1
1.4
Password policy UI changed
1.3.4
Password policy fixes and UI change and added feedback form
1.3.3
Password policy fixes and UI change
1.3.2
Password policy fixes
1.3.1
Password policy compatibility test with 6.0
1.2.3
Password policy with UI improvements, documents, and videos added
1.2.2
Password policy manager with First Time Login Password Change and bug fixes
1.2.1
Password policy with the new UI, bug fixes, and code improvement
1.1.4
Password policy with the new reset password window and some bug fixes
1.1.3
Password policy with the bug fixes and code improvement
1.1.2
Password policy with the new user interface and code improvement
1.1.1
password policy with the Bug fixes and code improvement
1.1.0
Password policy with the New UI,1 Click Reset password, Password Score, Password Report.
1.0.3
Bug fixes Password Policy Manager: Strong password policy on WP reset link, UI improvement. Code improvement.
1.0.2
Password policy manager with the basic functionality adding and bug fixes.
1.0.1
Password policy manager with the basic password management system adding feedback form and bug fixes.
1.0.0
Password policy manager to force users to password change, strong passwords to maintain high security of the website.