Updated on 2024-09-24 GMT+08:00

Configuring the Login Password Policies

This topic describes how to configure the user password policies, including the password strength, number of password verification times, and password change period.

Prerequisites

You have the management permissions for the System module.

Procedure

  1. Log in to your bastion host.
  2. Choose System > Sysconfig > Security.
  3. In the Password Config area, click Edit.

    Complete configurations as prompted.
    Figure 1 Password Config
    Table 1 Parameters for configuring a password policy

    Parameter

    Description

    Strength check

    Checks password strength. It is enabled () by default.

    • : disabled
    • : The password can contain 8 to 32 characters and must contain at least three types of the following characters: uppercase letters, lowercase letters, digits, and special characters !@$%^-_=+[{}]:,./?~#*.

    First logon change

    Forces a user to change password upon first login to the system. It is enabled () by default.

    • : disabled.
    • : enabled.

    Sameness check

    Prohibits the reuse of the latest N passwords.

    • The password used for initial login is not counted.
    • Default value: 5
    • Value range: 1 to 30

    Change cycle

    Password validity period. Users will be forced to change their passwords upon expiry.

    • Default value: 30 days
    • Value range: 0 to 90, in days
    • If the value is 0, the password never expires.

  4. Click OK. You can then check the password policy of the current system user on the Security tab.