Enforce Password change & definite timeout period

[hifee]

I'm new to WHM and CPanel. I will like to know

1. How to enforce users created to login to WHM to forcefully change their passwords over a specified duration. e.g Every 3 Months.

2. When i login to WHM and CPanel, and leave my system for hours. When i get back it does not require me to enter my password and login again. I just refresh and i pick up from where i left. This is not a good practice. Is there a way i can enforce a session timeout. e.g after 15 minutes or 10 minutes i get logged out and i have to provide my password again.

 

[24x7server]

Hi,

1. How to enforce users created to login to WHM to forcefully change their passwords over a specified duration. e.g Every 3 Months.

Here are the links you can follow:
Force Password Change - Version 68 Documentation - cPanel Documentation

Look for the option named password age.
Configure Security Policies - Version 68 Documentation - cPanel Documentation

2. When i login to WHM and CPanel, and leave my system for hours. When i get back it does not require me to enter my password and login again. I just refresh and i pick up from where i left. This is not a good practice. Is there a way i can enforce a session timeout. e.g after 15 minutes or 10 minutes i get logged out and i have to provide my password again.

A similar thing has been discussed in the below thread:
Session timeout in WHM , cPanel

However, I think if you can find the cPanel internal PHP.ini that the interface uses and make PHP session settings in it, it might just work for you.. Give it a try..

 

[cPanelLauren]

Hello @hifee

@24x7server's advice on this is solid, please let us know if you have any questions!

Thanks!