Client password request

[yamaharr1]

When a client goes to WHMCS and requests their password because they have forgotten it the email that is sent the password is ******** is there a setting someplace to make it so they can retrieve their forgotten passwords?

[tomdchi]

When they try to log in with invalid info it should bring up a link for them to reset their password or get a reminder.

If your still using the old style, Password Reminders, then it should still send them a email with their current password. If the link after they enter wrong login info is gonig to passwordreminder.php then its the old style. If it is pwreset.php then its the new style where a new password is generated and emailed to them.

 

If you have edited your templates and these are not there then you need to send them to pwreset.php if they want to reset.

[yamaharr1]

The page they are sent to is pwreset.php when they enter their email the user name is sent but the password is ********

[tomdchi]

what version of whmcs are you using? If you have the option, what is Disable MD5 Clients Password set to in Setup->General Settings->Security? When you reset the password is it sending a verification email first?

[yamaharr1]

Version 4.1.2 - update available I know

 

Disable MD5 Clients Password - not ticked

 

If I go into the admin and resend the "Client Area Details Reminder" it appears to send OK but if the users uses the reset password from pwreset.php then ****** is received.

 

I understand the passwords are encrypted for security and I do want it set like that, but it sure isn't going to work out well if no one can reset a password.

[tomdchi]

If you still have the file passwordreminder.php in the top directory then you could try changing the link that the client clicks to use it instead of pwreset.php. It may still work the old way in that version of whmcs. Just find which template the link is in and edit it.