Restricting Users from Viewing or Editing Password Expiration Policy Settings

In CloudBlue Commerce, you can edit the settings of a user's role in such a way that a user will not be able to edit or view the Password Expiration Policy settings in their CP. You can apply such restrictions for provider, reseller and customer roles using the privileges mechanism. To understand what a role is in CloudBlue Commerce, refer to the User Roles and Permissions section.

To disable editing of the Password Expiration Policy settings for a user's role, perform the following steps:

  1. Go to System > Settings > Security in the Core group > Roles tab.

  2. Go to the tab containing the required type of role:

    • To edit provider roles, stay on the Staff member roles subtab.
    • To edit reseller roles, go to the Reseller roles subtab.
    • To edit customer roles, go to the Customer roles subtab.

  3. Click the name of a role:

    • To edit the default role of the provider's account (to which all newly created provider's staff members are assigned by default), select the Staff member defaults role.
    • To edit the reseller's Account Administrator Role (to which the first reseller's staff member is assigned), select the Account Administrator role on the Reseller roles tab.
    • To edit the customer's Account Administrator Role (to which the first customer's staff member is assigned), select the Account Administrator role on the Customer roles tab.
  4. Go to the Privileges tab.
  5. Find the Own Security Configuration privilege in the list and click Edit at the bottom of the screen.
  6. Set the Own Security Configuration privilege to Disabled or View and click Submit.

The results are as follows:

  • For provider and reseller roles: on the System > Settings > Security in the Core group > Setup tab of the PCP or RCP, on the Password Expiration Policy subtab, the Edit and Reset to defaults buttons are hidden.

  • For customer roles: the Password Expiration Policy menu item is hidden in the My Account > Account Data menu in the CCP.

    Note: If the Own Security Configuration privilege is set to Manage, the menu item is present in the CCP, but the Edit and Reset to defaults buttons in the Own users area policy fieldset are hidden.

Important: The password policy management permissions also depend on the state of the All Users privilege (available for provider and reseller roles only). If the privilege is set to Disabled, the provider or reseller can set the Password Expiration Policy settings for their own users only. The areas containing customers' and subordinate resellers' settings on the Password Expiration Policy screen are hidden.

© 2025 Ingram Micro, Inc. All Rights Reserved. Privacy Policy, Terms of Use and Legal

CloudBlue, an Ingram Micro business, uses cookies to improve the usability of our site. By continuing to use this site and/or logging in you are accepting the use of these cookies. For more information, visit our Privacy Policy.
I accept