Can't login

[pixelpadre]

What a nightmare this 90 day thing is turning out to be. I've got a dozen ZC websites and now I have to come up with new passwords every 90 days. And they cant be one of the last 4 passwords. All this security means only one thing. No security. Before I had them memorized now its now longer possible so instead I have to write them down where other people will be able to access them.

Classic problem I am having is not being able to login. So I get a new password ok. I type it in and it brings me to a new page asking me to type in my old password and new password twice. I presume by the word OLD they mean the newest one. If they are asking for the old one that I forgot, then there is no point in resetting password.

So I type in the user name and the reset password and then new password twice. Nuttin. Just and error telling me the password has to be at least 7 characters and consist of numbers and letters....which is exactly what I did.

So each time, I have to go to the database and use the work around of reseting default admin password. Then I have to create a real password. Lots andlots of work. I suspect, users will be shedding this platform in big numbers by the end of the year.

So my question is why cant I reset password successfully?

There was a security error when trying to login.
Sorry, your new password was rejected.
Passwords must contain both letters and numbers, must be at least 7 characters long, and must not be the same as the last 4 passwords used. Passwords expire every 90 days.

[pixelpadre]

your'e not gonna believe this but newly created password works in FF but not IE8

[kobra]

Clear browser cache

[pixelpadre]

Right. So now on top of all this other aggrivation, we have to clear browser caches in order to make this work? Does this sound user friendly and practical? You guys are on track to obsolescence simply for this rediculous login change.

ZC is difficult enough for users to keep up with. Keep piling on adversity see how that floats your boat.

I know I am seriously starting to consider other cart options at this time.

[Design75]

Clearing the cache has nothing to do with Zen Cart, it is the way browsers work. They cache file for you so you have to download less files every time you watch a page. Using other cart systems really won't help you, because they use the browser cache too.

[pixelpadre]

You have totally missed my point.

[mumzie]

The security requirements aren't the "fault" of the ZC community. It's the fault of the PCI compliance crud, and the requirements of the credit card and security community. Thank hackers and identity thieves everywhere for this "feature". I hate it too.

[mumzie]

I'm having the same problem. two different browsers. I've cleared cache on both, and still can't get it to work. My associate had a serious memory problem, and tried to login incorrectly about a dozen times...

[My_Red_Zebra]

I'm having a similar problem and it's DRIVING ME CRAZY!! However, I am getting a new password sent to my email address and it's not working!! How do I move on......I can't get into my webshop.

We're also similar to pixelpadre and we have about a dozen shops too.

[wilt]

Hi,

Are you using SSL for your admin, if so is it a dedicated SSL? or is it shared?

Also what settings do you have in your admin configure for
HTTP_SERVER
HTTPS_SERVER
ENABLE_SSL_ADMIN