Brightpearl user passwords and account security

New users will be provided with a temporary password when they are added to the account.

They will be asked to change this password when they first log in.

Forgotten password

If a user forgets their password they must use the Forgotten password link on the login screen. This will ensure they are provided with a new temporary login and asked to create a new password.


Note: It is not possible to manually set passwords for users.

Forgotten login email address

If a user has forgotten the email address they use to log in then they should contact their system administrator who can check their staff record in Brightpearl.

Changing your password

You can change your password at any time when logged into Brightpearl by clicking on your name on the top right-hand side of page and selecting “My Password”.

You’ll see a button that will send you an email to reset your password. Follow the steps in the email to complete your password reset.



Password security

Passwords must meet the following criteria:

  • At least 8 characters
  • At least 1 capital letter
  • At least 1 lower case letter
  • At least 1 number

Password expiry interval

It is advisable to require users to change their passwords with some frequency - for example, every 30 days. This frequency is defined at Settings > Company > Account security.

The number of days must be a number between 1 and 365.


IP restriction

For added security, it is possible to restrict access to Brightpearl to specific IP addresses. You can do so under Settings > Company > Account security.


Enter IP addresses as a comma-separated list.

You will be blocked from accessing your account if your current IP address isn't listed.

You can find your current public IP address using a Google search for "find my IP address".

Have more questions? Submit a request