User guide

Configuring Password Policy Settings Managing Switch User Accounts

page 7-10 OmniSwitch AOS Release 7 Switch Management Guide March 2015

Configuring Password Policy Settings

The global password policy settings for the switch define the following requirements that are applied to all

user accounts:

• Minimum password size.

• Whether or not the password can contain the username.

• The minimum number of uppercase characters required in a password.

• The minimum number of base-10 digits required in a password.

• The minimum number of non-alphanumeric characters (symbols) required in a password.

• Password expiration.

• The maximum number of old passwords that are saved in the password history.

• The minimum number of days during which a user is not allowed to change their password.

Password policy settings are applied when a password is created or modified. The following subsections

describe how to configure these settings using CLI commands.

To view the current policy configuration, use the show user password-policy command. For more infor-

mation about this command and those used in the configuration examples throughout this section, see the

OmniSwitch CLI Reference Guide.

Setting a Minimum Password Size

To configure a minimum password size, enter the user password-size min command. For example:

-> user password-size min 10

The minimum length for any passwords configured for users is now 10 characters.

Configuring the Username Password Exception

Use the user password-policy cannot-contain-username command to block the ability to configure a

password that contains the username. For example:

-> user password-policy cannot-contain-username enable

Enabling this functionality prevents the user from specifying the username in the password that is config-

ured for the same user account. For example, the password for the account username of public can not

contain the word public in any part of the password. However, the username of another account is still

allowed.