Nortel 2526T 用户指南

Using security in your network

ATTENTION

Do not enable EAPOL security on the switch port that is connected to the
RADIUS server.

Password security

The Ethernet Routing Switch 2500 Series supports the password security
feature that provides enhanced security for switch and stack passwords.
With password security enabled, the following enhanced security features
are applied:

Password length and valid characters

Valid passwords must be between 10 and 15 characters long. The password
must contain a minimum of the following:

•

two lower-case letters

•

two capital letters

•

two numbers

•

two special symbols, such as:!@#$%^&*()

The password is case sensitive.

Password retry

If the user fails to provide the correct password after a number of consecutive
attempts, the switch resets the logon process. The number of failed logon
attempts is configurable and the default is three.

Password history

The switch keeps a history of the last three passwords. You cannot reuse a
password stored in history. When you set the password for the fourth time,
you can reuse the password that you used the first time.

Password display

The password is not displayed as clear text. Each character of the password
is substituted with an asterisk (*).

Password verification

When you provide a new password, you must retype the password to
confirm it. If the two passwords do not match, the password update process
fails. In this case, you must try to update the password once again. There is
no limit on the number of times you are allowed to update the password.

Nortel Ethernet Routing Switch 2500 Series

Security — Configuration and Management

NN47215-505 (323165-B)

02.01

Standard

4.1

19 November 2007