Expire User Passwords

By Frankie Jarrett

Require certain users to change their passwords on a regular basis.

4.2

Rating summary

Reviews

Active installations

Download the Plugin

Overview

Compatibility

Customer support & learning resources

Changelog

Main benefits

Enhances site security

Meets industry compliances

Customizable password expiration

Role-specific password policies

Supports multiple languages

About this plugin

Author: Frankie Jarrett

Categories: Security

Version: 1.3.1

Last updated: 01-10-2022

WordPress version: 4.0

Tested up to: 6.0.9

PHP version required: false

Languages: Deutsch, Español [+3]

Tags:

Learning resources: View resources

Overview

The Expire Passwords plugin is designed to enhance site security by enforcing password expiration policies, thereby reducing the risk of unauthorized access through stale user accounts. Particularly beneficial for sites that need to comply with industry security standards such as those in government, banking, or healthcare, the plugin allows administrators to set a maximum number of days (default is 90) for password validity. Additionally, it enables selective enforcement for various user roles, typically excluding administrators. The plugin supports multiple languages including English, Czech, and Spanish, and encourages community contributions via its GitHub repository, where ongoing development and issue tracking are managed.

Enhanced Security

Prevents unauthorized access to stale user accounts
Ideal for sites needing to meet industry security compliances

Customizable Password Expiry

Set the maximum number of days users can use the same password
Default setting is 90 days

Role-Based Password Policies

Specify which user roles are required to reset their passwords regularly
Non-Administrators are required by default

Multilingual Support

Supports multiple languages including English, Czech, and Español

Features list

Feature

Free version

Premium version

Limit failed login attempts

Restrict the number of unsuccessful login attempts to enhance security.

Password expiry notification for users

Notify users when their passwords are about to expire.

Display GDPR consent notice on the login page.

Geo-blocking for the login page

Block login attempts from specific geographic locations.

Limit user’s logins to specific IP address(es)

Restrict user logins to designated IP addresses.

Reset all passwords feature

Allow administrators to reset all user passwords.

Users’ login time restrictions

Set specific time frames when users can log in.

Option to disable plugin’s emails

Provide an option to disable email notifications from the plugin.

Plugin’s settings exporter & importer

Export and import plugin settings for easy configuration.

Change the WordPress login page URL

Modify the default URL of the WordPress login page.

Compatibility with WooCommerce

Ensure the plugin works seamlessly with WooCommerce.

Automatically lock accounts after a number of failed logins

Lock user accounts after a set number of failed login attempts.

Automatically disable inactive WordPress user accounts

Disable user accounts that have been inactive for a specified period.

One-click integration with 3rd party plugins

Easily integrate with third-party plugins with a single click.

Priority support

Receive expedited assistance from our support team.

Pricing

Free Plan

$0 / year

Plan includes

Limit failed login attempts

Password expiry notification for users

Geo-blocking for the login page

Limit user’s logins to specific IP address(es)

Reset all passwords feature

Users’ login time restrictions

Option to disable plugin’s emails

Buy Now

Enterprise Plan

$69 / year

Plan includes

Priority support

Buy Now

In some cases companies have different prices based on various components like a location. As a result the prices displayed here can differ from the ones you see on their websites.

See all pricing options

Find Your Price Plan

Rating and reviews

4.2

Rating summary

Reviews

Active installations

User sentiment analysis

Users appreciate this WordPress plugin for its reliability and problem-solving capabilities. They find it essential for managing password security across multiple sites, preventing potential leaks from prolonged password use. However, some drawbacks are noted: the plugin blocks managed users from logging in after updates, and there is no export/import option to share settings or a way to configure it via the WP CLI. Despite these issues, overall satisfaction remains high due to its core functionality.

odvir

21 Nov, 2023

Excellent plugin. Unfortunately, after the new WordPress update, it blocks managed users from logging in.

nasseryo

12 Aug, 2023

Everything in the title

Henry Douglas

27 Mar, 2022

Excellent plugin, solved my problem.

nikmittal

26 May, 2020

Does what it says 🙂

marco1958

16 Mar, 2020

Using it on 15 WP 5.3.2 sites at the moment. It’s a must have these days. Using the same password too long will lead to leaks at some time. Would like to have an export/import option to easily share settings. Also a way to configure via the wp cli would be nice.

More plugins like this

See all

Expire User Passwords

Overview

Compatibility

Customer support & learning resources

Changelog

Main benefits

About this plugin

Overview

Enhanced Security

Customizable Password Expiry

Role-Based Password Policies

Multilingual Support

Features list

Pricing

Plan includes

Plan includes

Rating and reviews

User sentiment analysis

More plugins like this

Expire Passwords

Loginizer

Login Security Solution

WP Bouncer – Limit Simultaneous Logins

FAQ

What is the purpose of the Expire Passwords plugin?

How can I configure the maximum number of days users are allowed to use the same password?

Which user roles are required to reset their passwords regularly?

What languages are supported by the Expire Passwords plugin?

Where can I contribute to the development of this plugin?

Is this plugin a new development?

How can I support the development of this plugin?

Can this plugin help with industry security compliance?