Black Box ET0100A, ET1000A, ET0010A User Name Conventions, Default Password Policy Conventions

Provisioning Appliances

User Name Conventions

Follow the guidelines below when creating user names. These conventions apply regardless of the password strength policy.

●User names can range from 1-32 characters.

●Valid characters are alpha and numeric characters (a-z, 0-9), _ (underscore), and - (dash).

●User names must start with an alpha character or an underscore. The first character cannot be a numeric digit or a dash.

●Only lower case alpha characters are accepted.

●User names cannot contain a space.

Default Password Policy Conventions

The following guidelines apply to the default password strength policy.

●Passwords must be a minimum of 8 characters.

●Passwords are case-sensitive.

●Standard alphanumeric characters are allowed. Printable keyboard character and symbols are allowed except for the following: < > & “ $ ‘ ( ) ; ? / \

●Passwords must contain at least 2 characters from a mix of upper case letters, lower case letters, numbers and non-alphanumeric symbols. For example, an acceptable password might contain an upper case letter and a number, or a lower case letter and a symbol, or an upper case letter and a lower case letter.

●Do not use non-printable ASCII characters.

●Do not use dictionary words. ETEMS does prevent the use of dictionary words, but a password containing a dictionary word will be rejected by the ETEP.

EncrypTight and the ETEP allow an unlimited number of failed login attempts without locking the user out of the appliance.

Strong Password Policy Conventions

Passwords must conform to the following conventions when strong password enforcement is enabled on the ETEP. Strong password controls are available in ETEP 1.6 and later.

●Passwords must be at least 15–256 characters long.

●Standard alphanumeric characters are allowed. Printable keyboard character and symbols are allowed except for the following: < > & “ $ ‘ ( ) ; ? / \

●Passwords must contain a mix of upper case letters, lower case letters, numbers and special characters, including at least two of each of the four types of characters (2 upper case, 2 lower case, 2 numbers, and 2 special characters).

●When a password is changed, the new password must differ from the previous password by at least four characters.

●The password must not contain, repeat, or reverse the associated user ID.

●The password must not contain three of the same characters used consecutively.

●A user's password must not be identical to any other user's password.

●A new password must be different from the previous 10 passwords used.