Advanced Password Security Policy
Enforce robust password complexity rules, rotation intervals, and history checks at the company level to safeguard your business data.
Key Features Overview
Configure robust, granular guidelines to ensure passwords chosen by Odoo users meet industry compliance standards.
Password Expiration
Set password lifespan (e.g. 60 days) to force periodic rotations and limit exposure of compromised credentials.
Complexity Control
Enforce minimum numbers of lowercase letters, uppercase letters, numeric digits, and special symbols.
History Restrictions
Prevent users from cycling back and forth between previous passwords by restricting the reuse of the last X passwords.
Minimum Age (Cooldown)
Mandate a cooldown period between updates to prevent users from instantly bypassing history constraints.
Company-Scoped Policies
Configure distinct and independent password policies for each subsidiary in multi-company setups.
Native Integration
Integrates with Odoo's auth signup flow, reset password screens, and standard profile updates.
Company Settings
Configure company-level password requirements directly from the standard Odoo Settings interface. Set rotation durations, history parameters, and strict layout requirements.
Real-Time Validation
Odoo automatically validates credentials during login, signup, password resets, or settings changes. Helpful warning screens guide users immediately on policy gaps.
Configuration & Setup Guide
Follow these simple steps to configure and enforce password security policies.
Install the Module
Search for and install the Password Security module from the Odoo Apps dashboard.
Open General Settings
Navigate to Settings > General Settings and scroll down to the "Password Policy" configurations.
Set Policies
Define expiration days, minimum change hours (cooldown), and complexity levels (lowercase, uppercase, numbers, and symbols).
Save Settings
Click Save in the top-left to apply the settings. They are registered on the active company.
Enforce Instantly
Policies will automatically apply the next time any user in that company attempts to reset or change their password.
Frequently Asked Questions
Common questions regarding password security features, configuration, and compatibility.
Are existing passwords checked immediately?
No. The new rules are only checked the next time a user changes or resets their password.
Does it support multiple companies?
Yes. Each company can configure its own password security rules independently.
How can I disable password history?
Set the Password History size to 0 in General Settings to disable the history check.
What happens when a password expires?
The user is automatically redirected to the change password form upon their next login attempt.
Is it compatible with Odoo Community Edition?
Yes. It is fully compatible with Odoo 19 Community Edition out of the box.
Please log in to comment on this module