Skip to main content
Login

June 12, 2025: Password Policy Update

Modified on: Thu, 12 Jun, 2025 at 7:49 PM

Overview

To enhance security and streamline identity management, Siteimprove has introduced a global password policy that applies to all users across all accounts. This means that individual organizations can no longer configure their own password policies. This article outlines what this change means for you and your organization.

What’s Changing?

As of June 12th, 2025, Siteimprove has standardized its password policy across all customers. This change removes the ability for Account Owners or Administrators to set custom password requirements at the account level.

All users must now comply with the global password policy, which ensures consistent and secure access for everyone.

Frequently Asked Questions

Can I still set a custom password policy for my organization?

No. With the implementation of the global password policy, custom password settings at the account level are no longer supported. All users must follow the same password rules defined by Siteimprove.

What are the global password requirements?

The Siteimprove global password policy is based on NIST guidelines and requires passwords to be at least 8 characters long. Users are encouraged to use lengthy passphrases for better protection.

Note:

  • Passwords do not expire automatically.
  • After 5 failed login attempts in 60 seconds, the account is locked for 3 minutes

How does this affect existing users?

Existing users will be required to comply with the new password policy the next time they change or reset their password. Users with passwords that already meet the global requirements will not need to take any action.

What happens if a user forgets their password?

Users can reset their password using the “Forgot your password?” link on the login page. The new password must meet the global password policy requirements.

As a user, how do I reset my Siteimprove password?

See: How do I reset my Siteimprove password?

Does this affect users who log in via Single Sign-On (SSO)?

No. Users who authenticate via SSO are subject to their organization’s identity provider policies. However, users who log in directly to Siteimprove must follow the global password policy.

Did you find it helpful? Yes No

Send feedback
Sorry we couldn't be helpful. Help us improve this article with your feedback.