How to set password complexity and expiration for ClearPass admin users

By esupport posted Jun 25, 2015 02:05 PM

  
Requirement:

As a server admin, i wish to set complexity for my ClearPass admin (management login) password and also as per company policy wish to set password expiration. This document explains how it can be achieved.



Solution:

From ClearPass 6.5.0 a new Password Policy Settings form was added for both local users and admin users.



Configuration:

To use this option, go to either Administration > Users and Privileges > Admin Users > Password Policy or Configuration > Identity > Local Users > Password Policy. Options that can be configured for the password include length, complexity, disallowed characters, disallowed words, disallowed user ID or repeated characters, and the number of days to expiration.

Admin User

 

Local User

 



Verification

In Password Policy updated the password complexity as following (atleast one uppercase and one lowercase letter and 3 as disallowed character). Also set the Password expiration to 5 days.

After that tried to reset the admin password with character 3 and got an error as following

 

 

1 comment
1 view

Comments

Nov 12, 2019 07:04 AM

Hi, 

My customer has additional requirements such as at least 2 digit+2 symbol+2 Uppercase+2 Lowercase. Also the password must not be used for at least 3 generation, how do we facilitate this?

 

Thanks.