The MembershipProvider.ValidatingPassword event is raised during the MembershipProvider.CreateUser(string, string, string, string, string, bool, object, MembershipCreateStatus@), MembershipProvider.ChangePassword(string, string, string), and MembershipProvider.ResetPassword(string, string) methods.
The MembershipProvider.ValidatingPassword event occurs before the action requested and enables the user to continue or cancel the requested action. If the action is canceled, the user can specify an exception to be thrown.
Users use a System.Web.Security.MembershipValidatePasswordEventHandler event handler to specify a handler for the MembershipProvider.ValidatingPassword event. Provider implementers can use the MembershipProvider.OnValidatingPassword(ValidatePasswordEventArgs) virtual method to raise the MembershipProvider.ValidatingPassword event.