6.2.2.10. password-policy
6.2.2.10.1. Introduction
The password-policy command in subgroup set enables defining a password policy for the setup, gviewadm and gview accounts.
This policy applies to all users.
6.2.2.10.2. Prerequisites
User: setup
Dependencies: N/A
6.2.2.10.3. Command
To set the password complexity options:
(gcap-cli) set password-policy {lowercase-optional|lowercase-required|uppercase-optional|uppercase-required|digits-optional|digits-required|symbols-optional|symbols-required}
To enable or disable the password control policy:
(gcap-cli) set password-policy {disable|enable}
To restore the default password control policy:
(gcap-cli) set password-policy restore-default
To specify the minimum password length:
(gcap-cli) set password-policy password-length {8-100}
To set the length of time a password is valid:
(gcap-cli) set password-policy validity-duration {0|1-3650}
To disallow previously used passwords:
(gcap-cli) set password-policy previous-check {0|1-1000}
6.2.2.10.4. Example of removing the restriction on numbers
Enter the following command.
(gcap-cli) set password-policy digits-optional
Validate.
The system displays the result.Rules successfully updated
Note
To avoid having an end of validity, put 0 in the
`Validity duration`field.To prevent verification of old passwords, put 0 in the
`Verify last 0 passwords`field.
6.2.2.10.5. Example of disabling the default password control policy
To disable the default password control policy:
Enter the following command.
(gcap-cli) set password-policy disable
Validate.
The system displays the result.Rules successfully updated
To check the value modification:
Enter the following command.
(gcap-cli) show password-policy
Validate.
The system displays the disabled status of the control.No active password policy