Security

last person joined: 13 hours ago 

Enterprise security using ClearPass Policy Management, ClearPass Security Exchange, IntroSpect, VIA, 360 Security Exchange, Extensions and Policy Enforcement Firewall (PEF).
Expand all | Collapse all

CPPM Local Accounts - Password Expiration Exemption?

Jump to Best Answer
  • 1.  CPPM Local Accounts - Password Expiration Exemption?

    Posted Aug 28, 2017 08:21 PM

    When setting up local accounts in CPPM, and using them for 802.1x/TACACS services, there is an option in Account Settings to expire passwords after X days. However, I can't find any way to do exceptions on this, is it just all or nothing? For example, we would want user tacacs accounts to have an expiration, but other accounts to never expire. 



  • 2.  RE: CPPM Local Accounts - Password Expiration Exemption?
    Best Answer

    Posted Aug 28, 2017 08:23 PM

    All or nothing. It's not meant to be an identity store replacement. If you want more granular control, you can use guest user accounts or an external identity store.



  • 3.  RE: CPPM Local Accounts - Password Expiration Exemption?

    Posted Aug 28, 2017 08:31 PM

    Thanks for confirmation.