Cisco Systems 1.2 Manual De Usuario
Cisco recommends that each user have a strong password. If you enable the password strength check for
locally authenticated users, Cisco UCS Central rejects any password that does not meet the following
requirements:
locally authenticated users, Cisco UCS Central rejects any password that does not meet the following
requirements:
• Must contain a minimum of 8 characters and a maximum of 80 characters.
• Must contain at least three of the following:
◦Lower case letters
◦Upper case letters
◦Digits
◦Special characters
• Must not contain a character that is repeated more than 3 times consecutively, such as aaabbb.
• Must not be identical to the username or the reverse of the username.
• Must pass a password dictionary check. For example, the password must not be based on a standard
dictionary word.
• Must not contain the following symbols: $ (dollar sign), ? (question mark), and = (equals sign).
• Should not be blank for local user and admin accounts.
Password Profile for Locally Authenticated Users
The password profile contains the password history and password change interval properties for all locally
authenticated users of Cisco UCS Central. You cannot specify a different password profile for each locally
authenticated user.
authenticated users of Cisco UCS Central. You cannot specify a different password profile for each locally
authenticated user.
You must have admin, aaa, or domain-group-management privileges to change the password profile
properties. Except for password history, these properties do not apply to users with these administrative
privileges.
properties. Except for password history, these properties do not apply to users with these administrative
privileges.
Note
Password History Count
The password history count allows you to prevent locally authenticated users from reusing the same password
over and over again. When this property is configured, Cisco UCS Central stores passwords that were previously
used by locally authenticated users up to a maximum of 15 passwords. The passwords are stored in reverse
chronological order with the most recent password first to ensure that the only the oldest password can be
reused when the history count threshold is reached.
over and over again. When this property is configured, Cisco UCS Central stores passwords that were previously
used by locally authenticated users up to a maximum of 15 passwords. The passwords are stored in reverse
chronological order with the most recent password first to ensure that the only the oldest password can be
reused when the history count threshold is reached.
A user must create and use the number of passwords configured in the password history count before being
able to reuse one. For example, if you set the password history count to 8, a locally authenticated user cannot
reuse the first password until after the ninth password has expired.
able to reuse one. For example, if you set the password history count to 8, a locally authenticated user cannot
reuse the first password until after the ninth password has expired.
By default, the password history is set to 0. This value disables the history count and allows users to reuse
previously passwords at any time.
previously passwords at any time.
If necessary, you can clear the password history count for a locally authenticated user and enable reuse of
previous passwords.
previous passwords.
Cisco UCS Central Software User Manual, Release 1.2
71
User Management
Password Profile for Locally Authenticated Users