authentication policy template
Specifies the authentication policy template for password policy configuration.
Syntax
authentication policy template {strong | basic}
Parameters
strong | Specifies the strong security policy template. |
basic | Specifies the basic security policy template. |
Usage
The authentication policy template strong command sets the password policy to more stringent enforcement settings. Selecting this template automatically prepopulates the password policy with stricter settings commonly required by higher security standards, such as for the Department of Defense.
To remove the strong security template and return to the basic password policy, use the authentication policy template basic command.
When account control is enabled for the first time, the password policy is set to the basic template.
Example
amnesiac (config) # authentication policy template strong
amnesiac # show authentication policy
Authentication policy enabled: yes
Maximum unsuccessful logins before account lockout: 3
Wait before account unlock: 300 Seconds
Minimum password length: 14
Minimum upper case characters in password: 1
Minimum lower case characters in password: 1
Minimum numerical characters in password: 1
Minimum special characters in password: 1
Minimum interval for password reuse: 5
Minimum characters diff for password change: 4
Maximum characters can occur consecutively in password: 1
Prevent dictionary words in password: yes
Minimum days before password change allowed: 1 day
User passwords expire: 60 days
Warn user of an expiring password: 7 days before
User accounts with expired passwords lock: 305 days
amnesiac (config) # authentication policy template basic
amnesiac # show authentication policy
Authentication policy enabled: yes
Maximum unsuccessful logins before account lockout: no limit
Wait before account unlock: 300 Seconds
Minimum password length: 6
Minimum upper case characters in password: 0
Minimum lower case characters in password: 0
Minimum numerical characters in password: 0
Minimum special characters in password: 0
Minimum interval for password reuse: 0
Minimum characters diff for password change: 0
Maximum characters can occur consecutively in password: no limit
Prevent dictionary words in password: yes
User passwords expire: never
Warn user of an expiring password: N/A
User accounts with expired passwords lock: never
Product
SCC, Interceptor, Mobile Controller, SteelHead CX, SteelHead EX, SteelHead-v, SteelHead-c
Related Commands