Reset the password for a user

Written by Mark Enrega on Tuesday, February 5, 2019

All user accounts on your Drupal website are password protected. When you want to login to your website, you need to use either your email address or user name, together with a password. Sometimes it might be necessary for you to change your password, or change the password for another user.

How to change your password

Follow these steps to change the password for your user account on your website:

  1. Log into your website using your account (e.g. https://your-domain-name.com/user/login)
  2. Click the Edit button on your account profile page (e.g. https://your-domain-name.com/user)
  3. Enter your old password (if required) and then enter your new password in the Password fields
  4. You will need to enter the password again in the Confirm password field
  5. Scroll to the bottom and click the Save button

Forgotten your password?

If you have forgotten your password, or if you have never been given your password, follow the steps on our reset your password page.

Changing a password for another user

Anyone with Super User privileges can change the password for other users. Follow these steps to change the password for any user account on your website:

  1. Log into your website using with a Super User account (e.g. https://your-domain-name.com/user/login)
  2. Go to the People section. This displays a list of all your users
  3. Click the Edit button for the user account you want to change
  4. Enter the new password in the Password field
  5. You will need to enter the password again in the Confirm password field
  6. Scroll to the bottom and click the Save button

Keep passwords secure

If you are changing the password for another user, it is not recommended to give the new password to the other user by email, SMS or phone, as it's not a secure. Alternatively, you can set a temporary password and then ensure that the other user resets their own password when they next log in to the website.

Changing the password for another user should be a last resort. It is best to encourage users to change their own password by following steps outlined at the top of this page.