HP 6125XLG R2306-HP 6125XLG Blade Switch Security Configuration Guide - Page 118
Setting global password control parameters - default password
View all HP 6125XLG manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 118 highlights
After the global password control feature is enabled, you cannot display the password and supper password configurations for device management users by using the corresponding display commands. However, the configuration for network access user passwords can be displayed. To enable password control: Step 1. Enter system view. 2. Enable the global password control feature. 3. (Optional.) Enable a specific password control function. Command system-view password-control enable password-control { aging | composition | history | length } enable Remarks N/A By default, the global password control feature is disabled. By default, all four password control functions are enabled. Setting global password control parameters The password expiration time, minimum password length, and password composition policy can be configured in system view, user group view, or local user view. The password settings with a smaller application scope have higher priority. Global settings in system view apply to the passwords of the local users in all user groups if you do not configure password policies for these users in both local user view and user group view. The password-control login-attempt command takes effect immediately and can affect the users already in the password control blacklist. Other password control configurations do not take effect on users that have been logged in or passwords that have been configured. To set global password control parameters: Step 1. Enter system view. 2. Set the password expiration time. 3. Set the minimum password update interval. 4. Set the minimum password length. 5. Configure the password composition policy. 6. Configure the password complexity checking policy. Command system-view Remarks N/A password-control aging aging-time The default setting is 90 days. password-control update interval interval password-control length length password-control composition type-number type-number [ type-length type-length ] password-control complexity { same-character | user-name } check The default setting is 24 hours. • In non-FIPS mode, the default length is 10 characters. • In FIPS mode, the default length is 15 characters. • In non-FIPS mode, a default password must contain at least one character type and at least one character for each type. • In FIPS mode, a default password must contain four character types and at least one character for each type. By default, the system does not perform password complexity checking. 109