Controlling Management Access 217
Managing Passwords
Beginning in Privileged EXEC mode, use the following commands to
configure password security and to configure passwords for the Line and
Enable modes.
line {console|ssh
|telnet}
Enter Line configuration mode for the specified access
method.
login authentication
{default|
list-name
}
Specify the login authentication list to use for the line
access. The list is applied to the current line mode
(console, Telnet, or SSH).
enable authentication
{default|
list-name
}
Specify the enable authentication list to use for access to
Privileged EXEC mode and higher levels. The list is
applied to the current line mode (console, Telnet, or SSH).
<CTRL + Z> Exit to Privileged EXEC mode.
show authentication
methods
View information about the configured authentication
lists and the lists that are in use for login and enable
access.
Command Purpose
configure Enter Global Configuration mode.
passwords aging
age
Specify the number of days (1-365) a password can exist
before it is expired.
passwords history
historylength
Set the number of previous passwords that are stored to
ensure that users do not reuse their passwords often
(Range 1–10).
passwords min-length
length
Configure the minimum length required for passwords in
the local database. The configured value also applies to the
enable password (Range 8–64).
passwords strength
minimum uppercase-
letters
min
Enforce a minimum number of uppercase letters that a
password should contain. The valid range is 0-16.
passwords strength
minimum lowercase-
letters
min
Enforce a minimum number of lowercase letters that a
password should contain. The valid range is 0-16.
Command Purpose
To Next Page
Loading...
