Search Over 30,000 FREE Plugins from the Official WordPress Plugin Directory Repository

Expire Passwords

Require certain users to change their passwords on a regular basis.

Did you find this plugin helpful? Please consider leaving a 5-star review.

Harden the security of your site by preventing unauthorized access to stale user accounts.

This plugin is also ideal for sites needing to meet certain industry security compliances - such as government, banking or healthcare.

In the plugin settings you can set the maximum number of days users are allowed to use the same password (90 days by default), as well as which user roles will be required to reset their passwords regularly (non-Administrators by default).

Languages supported:

  • English
  • Czech
  • Español

Development of this plugin is done on GitHub. Pull requests welcome. Please see issues reported there before going to the plugin forum.

Author Frankie Jarrett
Contributors fjarrett
Tags admin, login, Membership, passwords, profile, security, users
  1. expire-passwords screenshot 1

    Configure which user roles should be required to regularly reset their passwords and how often.

  2. expire-passwords screenshot 2

    Users with expired passwords are redirected to the password reset screen upon sign in.

  3. expire-passwords screenshot 3

    Users are not permitted to use the same password two times in a row during reset.

0.6.0 - January 5, 2017

  • Fix: Expiration not updating when resetting a password via email confirmation link.

Props @fjarrett

0.5.0 - December 23, 2016

  • Tweak: Indicate support for WordPress 4.7 and require at least 4.0.
  • Fix: Selected user roles in plugin settings not always being honored.
  • Fix: Destroy all sessions after login with an expired password.

Props @fjarrett

0.4.0 - April 13, 2016

  • New: Indicate support for WordPress 4.5.
  • Tweak: Bring back PHP 5.2 compatibility.

Props @fjarrett

0.3.0 - July 9, 2015

  • New: Language support for Czech
  • Tweak: Optimizations requiring PHP 5.3 or higher
  • Fix: User role array error before options exist

Props @fjarrett, @dero

0.2.2 - July 2, 2015

  • New: Language support for Español

Props @fjarrett

0.2.1 - July 2, 2015

  • Fix: Fatal undefined function error occuring in some cases (#3)

Props @fjarrett

0.2.0 - April 29, 2015

  • New: Disallow using the same password as before on reset (#1)
  • Tweak: Use default if limit is set to greater than 365 days

Props @fjarrett

0.1.0 - April 28, 2015

  • Initial release

Props @fjarrett

Version 0.6.0

Requires WordPress version: 4.0 or higher

Compatible up to: 4.7.2

Last Updated 05 Jan 2017

Date Added: 28 Apr 2015


4.9 stars
7 ratings


Not Enough Data

Works: 0
Broken: 0