3com 8807 User Guide
78
P
ASSWORD
C
ONTROL
C
ONFIGURATION
Introduction to
Password Control
Configuration
Password Control
Configuration
Switch 8800 Family series switches provide the password control function. Before
a user can log in to the switch, a system login password must be configured. After
a password is configured, the user must enter the password each time he or she
wants to log in to the switch. The user and can successfully log in to the switch
and proceed with operations only if he or she passes the authentication. If the
password authentication fails, the user will not be able to log in to the switch.
a user can log in to the switch, a system login password must be configured. After
a password is configured, the user must enter the password each time he or she
wants to log in to the switch. The user and can successfully log in to the switch
and proceed with operations only if he or she passes the authentication. If the
password authentication fails, the user will not be able to log in to the switch.
The user can either use the default password configuration, or perform his or her
own password control configuration. When conducting password control, the
user must follow the steps below:
own password control configuration. When conducting password control, the
user must follow the steps below:
1 Configuring system login password
If password authentication is required for a user to log in to the system, the system
will protect the password, instead of displaying the input password in the
command line. The password must not be displayed in plain text either in the
system configuration file or on the terminal: the password must be encrypted be
being stored.
will protect the password, instead of displaying the input password in the
command line. The password must not be displayed in plain text either in the
system configuration file or on the terminal: the password must be encrypted be
being stored.
When a user inputs the password, "******", rather than the plain text of the
user’s password, will appear on the terminal. When configuring a password, the
user needs to input the password twice for confirmation. During password
configuration, the password appears as "******" in the command line, and it
appears in the form of encrypted text in the configuration file.
user’s password, will appear on the terminal. When configuring a password, the
user needs to input the password twice for confirmation. During password
configuration, the password appears as "******" in the command line, and it
appears in the form of encrypted text in the configuration file.
2 Enabling password control
After password configuration, the user can conduct password control, which
includes the following aspects:
includes the following aspects:
■
Enabling password aging
■
Enabling limitation of minimum password length
■
Enabling history password recording
When a login password expires, the system will require the user to input a new
password and will save the old password automatically. By recording the history
passwords, the system can prevent the user from using a single password or
repeated passwords when modifying a password, thus to enhance the security.
password and will save the old password automatically. By recording the history
passwords, the system can prevent the user from using a single password or
repeated passwords when modifying a password, thus to enhance the security.
The system stores the history password records in a private file in the flash
memory. This file is not accessible to any user. In addition, the system
automatically backs up the history password records and blacklist records,
specifically as follows:
memory. This file is not accessible to any user. In addition, the system
automatically backs up the history password records and blacklist records,
specifically as follows: