Password Reset Enforcement


This plugin allows you to force users of your WordPress website to reset their passwords. This is useful if you want to enforce a password retention, or in case of a user data breach.

Password reset can be enforced for all users at once (note: account of the user who initiate the action will always be excluded from the processing), or: for all users in a given role, and/or specific users (chosen by their user login or display name).

This plugin can be enabled on a single site, or WordPress multisite (network) installation – in the latter case, you can only enforce all users at once (filtering per role and per user is not available).

Available options

  • Decide whether or not users should receive an email with the password reset link.
  • Decide whether or not users should be allowed to initiate the password reset process using their current passwords. If checked (enabled), users will be able to log in (using their current passwords) and will be redirected to the “set new password” form immediately after successful login and logged-out (so that the only action they can take is to set the new password). If unchecked (disabled), users will not be able to log in using their current password – they will be logged out immediately, and redirected to the “reset password” form, where they will have to provide their user name or email, and initiate the “full” password reset process.
  • Decide when should the password be reset. Choose “After current session expiry” to force users to reset their passwords after their current session expires. Choose “Immediately” to force logout of chosen users.

This plugin is optimized to work on a sites with large number of users (enterprise-scale).

Other security plugins of ours

Check the Password Policy & Complexity Requirements WordPress plugin to enforce secure password policy for your users and define healthy password retention.


  • Choose all users at once to reset their passwords.
  • Choose users by role, or by login/display name.


No hi ha ressenyes per a aquesta extensió.

Col·laboradors i desenvolupadors

«Password Reset Enforcement» és programari de codi obert. La següent gent ha col·laborat en aquesta extensió.


Registre de canvis

1.5.0 (2024-07-11)

  • Settings page redesigned
  • Dependencies updated
  • Code improvements

1.4.0 (2024-05-24)

  • Dependencies updated
  • Code improvements
  • Basic onboarding process implemented

1.3.0 (2024-04-26)

  • Dependencies updated
  • Code improvements

1.2.0 (2024-03-26)

  • Plugin container implemented

1.1.1 (2024-02-01)

  • Docblock types updated

1.1.0 (2024-01-26)

  • Internal dependency management improved
  • Assets loading improved
  • Unnecessary ABSPATH check removed
  • Type check improved
  • Settings and Fields configuration improved
  • Settings page build process improved
  • Code organization improvements

1.0.0 (2023-11-23)

  • The first stable release