Cisco Cisco Web Security Appliance S160 Guía Del Usuario
22-12
AsyncOS 10.0 for Cisco Web Security Appliances User Guide
Chapter 22 Perform System Administration Tasks
Configuring Administrator Settings
Step 4
Submit and commit your changes.
Additional Security Settings for Accessing the Appliance
You can configure the Web Security appliance to have stricter access requirements for administrators
logging into the appliance.
logging into the appliance.
Option
Description
List of words to
disallow in passphrases
disallow in passphrases
Create a .txt file with each forbidden word on a separate line, then select the
file to upload it. Subsequent uploads overwrite previous uploads.
file to upload it. Subsequent uploads overwrite previous uploads.
Passphrase Strength
You can display a passphrase-strength indicator when an administrative user
enters a new passphrase.
enters a new passphrase.
This setting does not enforce creation of strong passphrases, it merely shows
how easy it is to guess the entered passphrase.
how easy it is to guess the entered passphrase.
Select the roles for which you wish to display the indicator. Then, for each
selected role, enter a number greater than zero. A larger number means that
a passphrase that registers as strong is more difficult to achieve. This setting
has no maximum value, but a very high number makes it effectively
impossible to enter a passphrase that evaluates as "good."
selected role, enter a number greater than zero. A larger number means that
a passphrase that registers as strong is more difficult to achieve. This setting
has no maximum value, but a very high number makes it effectively
impossible to enter a passphrase that evaluates as "good."
Experiment to see what number best meets your requirements.
Passphrase strength is measured on a logarithmic scale. Evaluation is based
on the U.S. National Institute of Standards and Technology rules of entropy
as defined in NIST SP 800-63, Appendix A.
on the U.S. National Institute of Standards and Technology rules of entropy
as defined in NIST SP 800-63, Appendix A.
Generally, stronger passphrases:
•
Are longer
•
Include upper case, lower case, numeric, and special characters
•
Do not include words in any dictionary in any language.
To enforce passphrases with these characteristics, use the other settings on
this page.
this page.