Alcatel-Lucent 6850-48 Manuale Supplementare
Configuring Password Policy Settings
Managing Switch User Accounts
page 8-12
OmniSwitch AOS Release 6 Switch Management Guide
September 2009
Configuring Password Policy Settings
The global password policy settings for the switch define the following requirements that are applied to all
user accounts:
user accounts:
• Minimum password size.
• Whether or not the password can contain the username.
• The minimum number of uppercase characters required in a password.
• The minimum number of uppercase characters required in a password.
• The minimum number of base-10 digits required in a password.
• The minimum number of non-alphanumeric characters (symbols) required in a password.
• Password expiration.
• The maximum number of old passwords that are saved in the password history.
• The minimum number of days during which a user is not allowed to change their password.
Password policy settings are applied when a password is created or modified. The following subsections
describe how to configure these settings using CLI commands.
describe how to configure these settings using CLI commands.
To view the current policy configuration, use the
command. For more infor-
mation about this command and those used in the configuration examples throughout this section, see the
OmniSwitch CLI Reference Guide.
OmniSwitch CLI Reference Guide.
Setting a Minimum Password Size
The default minimum password length (or size) is 8 characters. To configure a minimum password size,
enter the
enter the
command. For example:
-> user password-size min 10
The minimum length for any passwords configured for users is now 10 characters.
Note that the maximum password length is 31 characters.
Configuring the Username Password Exception
By default, specifying the username as all or part of a password is allowed. Use the
command to block the ability to configure a password that contains the user-
name. For example:
-> user password-policy cannot-contain-username enable
Enabling this functionality prevents the user from specifying the username in the password that is config-
ured for the same user account. For example, the password for the account username of public can not
contain the word public in any part of the password. However, the username of another account is still
allowed.
ured for the same user account. For example, the password for the account username of public can not
contain the word public in any part of the password. However, the username of another account is still
allowed.