Users with appropriate permissions can configure the password policy for logging in to a device.
To configure the password policy
- Navigate to System â–¶ Session â–¶ Password Policy.
- In Password Policy Configuration, do one of the following:
- Complete the fields according to your requirements. For more information, see Password Policy Configuration Parameters below.
- Click Default to load the form with predefined default values.
- Click Apply.
Password Policy CLI Commands
The following CLI commands are available for users with appropriate permissions:
password-policy edit: allows you to change the password policy configurationpassword-policy show configuration: shows the current configuration of the password policy
See the CLI help for more information.
Password Policy Configuration Parameters
| Parameter | Description |
|---|---|
| Minimum Length | The value represents the minimum character length of the password. Default value is 1. |
| Maximum Length | The value represents the maximum character length of the password. Default value is 1. |
| Minimum Uppercase Letters | The value represents the minimum number of upper-case characters that must be used in the password. Default value is 0. The range is 0 to 128. |
| Minimum Lower Letters | The value represents the minimum number of lower-case characters that must be used in the password. Default value is 0. The range is 0 to 128. |
| Minimum Digits | The value represents the minimum number of digits that must be used in the password. Default value is 0. The range is 0 to 128. |
| Minimum Special Characters | The value represents the minimum number of special characters that must be used in the password. The range is 0 to 128. Default value is 0. The list of special characters is chosen from the set: { !, $, %, ^, &, *, (, ), _, +, |, ~, -, =, {, }, [, ], :, ", ;, ', <, >, ?, ,', / }. |
| History Reuse Limit | The limit represents the number of times the password is changed before which the same password can be reused. Range is 0 to 24. Default value is 0. A value of 0 means there is no reuse-limit. |
| Expiration Days | Represents the maximum number of days. Range 0 to 365. Default is 0. A value of 0 means there is no expiration. |
| Warning Days Before Expiry | Represents the number of days before a password is going to expire. Range 0 to 365. Default value is 0. A value of 0 means there is no warning. |
| Blacklist Check | The value represents whether a check of well-known passwords is enabled or not. Default is disabled. Note: For information on which passwords are included in the check, contact your Cisco representative. |
© 2025 Cisco and/or its affiliates. All rights reserved.
For more information about trademarks, please visit: Cisco trademarks
For more information about legal terms, please visit: Cisco legal terms
For legal information about Accedian Skylight products, please visit: Accedian legal terms and tradmarks