Bug - Passwords with an ampersand special character (&) fail login such as ‘f&AQ’. As a result, any user who uses an ampersand in their password will be unable to login.
The login is unaffected, the & never gets to be stored because is filtered by the “User Management” edit page at the time you are setting the password. We have fixed this and also enforced a stronger password policy for all new accounts.
- 8-30 char
- One or more of the following characters “!@#$%^&()][”
The patch goes live next Monday.
Thanks for the report!!!