Hi Tkabe,

I am really sorry for the delay of this reply. Please find my answers from your inquiries below.

If I change the Profile Type>Custom field - Joomla User Password to require 8 digits rather than the default 4 digits when will this force existing users to change their password length The next time the user logs into the system?

Currently it will only affecting new registration on your site and it will not show up any message or enforce the existing registered user to change their password once they logged in into your site. However this seems like a good idea in term of security purpose. Perhaps you can voice out this suggestion inside our voices page, http://stackideas.com/voices/easysocial so other people can vote for it.

2. only when the user chooses to reset the account password using - forgot my password link in the login form and if the user edits the password field in the account settings within the user profile?

I just tested this locally and it seems like this is only applicable when the user change their password through profile edit. User can put any kind of password during password reset. I will forward this to our developers so that they can integrate easysocial password custom field inside password reset field form in order for the validation to be correct. Hopefully they can do something about this.