Jump to content

How to see a clients password

zippohosting

By zippohosting
in Using WHMCS

 Share

Recommended Posts

zippohosting Member

zippohosting

Posted
  • Author
Posted

Well, I have my answer from Matt - the answer is no we can not see the passwords in v4.

 

It has become a customer service issue since 90% of our clients rely on us to do many of the tasks - and when we are logged in as admin it is not the same experience as logged in as a client.

 

I am glad the thread invoked some great debate and maybe WHMCS will introduce the feature again in future.

 

Thank you to all.

0
Link to comment
Share on other sites
  • Replies 53
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Stream101 Senior Member

Stream101

Posted
Posted

We should NOT be able to see the passwords (especially low level employees). We SHOULD however, be able to have a button to login as the client for every panel, either by encoding the password into a URL or another method, but we NEED to be able to login as the client every once in a while.

0
Link to comment
Share on other sites
Lawrence Senior Member

Lawrence

Posted
Posted
We should NOT be able to see the passwords (especially low level employees). We SHOULD however, be able to have a button to login as the client for every panel, either by encoding the password into a URL or another method, but we NEED to be able to login as the client every once in a while.

 

That ability is already there. Just "login as client" and go to the product or service in mind, and click the login button for it.

0
Link to comment
Share on other sites
keliix06 Senior Member

keliix06

Posted
Posted
Yes, I know. It's a PITA.

 

Like some others on here, most of my customers are known to me personally - I recognize their voices on the phone, I know them to see them - they've counted on me for years to be able to quickly and easily provide them all sorts of info, including forgotten passwords. They will email me files and ask me to upload them to their site - and I like being able to lookup user/pass so that I can do that. Often their MySQL passwords will be the same as their FTP/CPanel passwords, so again - I like being able to look it up and it's always helped me service my customers.

 

Fundamentally - I see no security advantage to having a full 'root' admin not being able to see all info, including passwords.

 

How does not being able to see the WHMCS password stop you from doing any of that? Control panel and other login info is not ecrypted. The ONLY thing you can't see is their password for WHMCS. And for that, if you want to provide the password that they've lost, you can either manually change it or enter their email address in the password reminder page.

0
Link to comment
Share on other sites
  • 3 weeks later...
Ninthcom Junior Member

Ninthcom

Posted
Posted

After reading this post, I agree with 9DollarDomians! If you have full root admin access, your portal should be transparent or you should have a function to see the password just like you do to see a clients credit card information... Maybe that could be an option.

0
Link to comment
Share on other sites
Lawrence Senior Member

Lawrence

Posted
Posted
After reading this post, I agree with 9DollarDomians! If you have full root admin access, your portal should be transparent or you should have a function to see the password just like you do to see a clients credit card information... Maybe that could be an option.

 

Perhaps, but as previously stated, there is no good reason to need the client's password.

0
Link to comment
Share on other sites
scurrell Senior Member

scurrell

Posted
Posted
Perhaps, but as previously stated, there is no good reason to need the client's password.

 

Root cant see users passwords in linux and administrator cant see users passwords in windows. Why do you think it should be possible in whmcs then?

 

It's not your decision to make though is it? This thread is for people who want an option to be able to see, or easily access the clients password.

 

If you're happy with the way things are, don't bother to post.

0
Link to comment
Share on other sites
Lawrence Senior Member

Lawrence

Posted
Posted
It's not your decision to make though is it? This thread is for people who want an option to be able to see, or easily access the clients password.

 

If you're happy with the way things are, don't bother to post.

 

Perhaps I shouldn't, but people should understand that this was done for security. If someone forgets their password or loses it, it is bad (security-wise) to re-issue the same one.

0
Link to comment
Share on other sites
Frankc Senior Member

Frankc

Posted
Posted

I originally posted this in a similar thread in the FEATURE REQUESTS forum but then saw that the thread was closed. Strange because MANY users requested this feature to come back.

 

Many of us have spent months and many many thousands on making WHMCS to be a core part of a number of disparate systems, with shared logins, cross system management/billing etc

 

So removing a core-part of the system that has been built on and relied on is a major backwards step ...

 

Actually it's really funny that WHMCS and some users protect and defend the PETTY CASH passwords which is WHMCS client area passwords like Fort Knox but leave the REAL GOLD such as the hosting account information totally unprotected.

 

Can any of the clever posters please explain to me how a client that travel without access to email can access his account to view invoices, pay invoices or order something etc if he/she forget his/her password?

 

We as administrators is there to provide a SERVICE to our clients and if they ask for their passwords and we KNOW these clients or they can identify themselves positively it's rather funny to tell them we can give them their HOUSE keys but unfortunatelly not their post box keys (for reading or paying invoices etc) since it's a security risk.

0
Link to comment
Share on other sites
HostOrca Senior Member

HostOrca

Posted
Posted

Even better news, it's coming back as an option!

 

I agree with what Matt posted in the thread, there is absolutely no reason to have the password in plain text. There are actionhooks that can be setup to update passwords in other apps etc., storing passwords in plain text, that there is a good chance that the user uses for other sites/accounts, is just asking for trouble.

 

And before anyone says because I do not want this feature, that I shouldn't comment, this is a forum, and I, like you, have the right to express my views.

0
Link to comment
Share on other sites
MACscr Senior Member

MACscr

Posted
Posted
My company almost deals exclusivly with businesses, and our sales reps in turn set up, configure, and service the accounts... so not haveing easy access to the clients password caused some issues....

 

How so? All WHMCS admins could already log into clients whmcs accounts. The issue had absolutely nothing to do with their products.

0
Link to comment
Share on other sites
sgrayban Senior Member

sgrayban

Posted
Posted

I used the password as a verification when doing phone help. If you want to hide the password then how about adding a PIN code to be used like everyone else in the hosting business uses instead of forcing what *you* think is best.

 

The people here buy your product so that it is helpful in there business - disabling features without asking for input is straight up wrong.

0
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated

  I accept