Quote:
Originally Posted by dansgalaxy
Changing password..
He has changed password using WHMCS (which obv does changes via API module).
I have personally change his password via WHM using both the sub form on the list accounts and the dedicated account password change page.
They would enable the new passwords to work but the old passwords still work (currently he can use 3 passwords to login).
I spoke with support for where i get my server/cpanel from their solution was to change password from command line using /scripts/chpass they did this and i did this and it appeared to stop the old passwords working.
The client then changed the random gen password which i changed it to to his own... but apparently now the 3 passwords still work and allow login to the account.
|
I am unable to replicate this issue by using WHM's password modification feature.
Things to check for:
1. Is the customer closing their web browser after logging out? If you are using the default HTTP authentication, the user is logged in until they close their web browser.
2. When logging in as the customer with their password, do you ever see a message at the top indicating they're logged in as a reseller?
If the user is closing their browser and they aren't logging in with their username and a reseller's password (which can happen if a reseller has a weak or commonly used password), please submit a support ticket so we can see his happening on your server and determine the cause of this issue:
http://tickets.cPanel.net/submit