Chapter 16 Managing System Administrators

Configuring Authentication Settings for Administrators

Related Topics

Understanding Roles, page 16-3

Administrator Accounts and Role Association, page 16-6

Configuring Authentication Settings for Administrators, page 16-9

Configuring Authentication Settings for Administrators

Authentication settings are a set of rules that enhance security by forcing administrators to use strong passwords, regularly change their passwords, and so on. Any password policy changes that you make apply to all ACS system administrator accounts.

To configure a password policy:

Step 1 Choose System Administration > Administrators > Settings > Authentication.

The Password Policies page appears with the Password Complexity and Advanced tabs.

Step 2 In the Password Complexity tab, check each check box that you want to use to configure your administrator password.

Table 16-6describes the fields in the Password Complexity tab.

Table 16-6 Password Complexity Tab

Option

Description

Applies to all ACS system administrator accounts

Minimum length

Required minimum length; the valid options are 4 to 20.

 

 

Password may not contain the username or

Check to specify that the password cannot contain the username or reverse

its characters in reversed order

username. For example, if your username is john, your password cannot be john

 

or nhoj.

 

 

Password may not contain ‘cisco’ or its

Check to specify that the password cannot contain the word cisco or its

characters in reversed order

characters in reverse order, that is, ocsic.

 

 

Password may not contain ‘’ or its

Check to specify that the password does not contain the string that you enter or

characters in reversed order

its characters in reverse order. For example, if you specify a string, polly, your

 

password cannot be polly or yllop.

 

 

Password may not contain repeated

Check to specify that the password cannot repeat characters four or more times

characters four or more times consecutively

consecutively. For example, you cannot have the string apppple as your

 

password. The letter p appears four times consecutively.

 

 

Password must contain at least one character of each of the selected types

 

 

Lowercase alphabetic characters

Password must contain at least one lowercase alphabetic character.

 

 

Upper case alphabetic characters

Password must contain at least one uppercase alphabetic character.

 

 

Numeric characters

Password must contain at least one numeric character.

 

 

Non alphanumeric characters

Password must contain at least one nonalphanumeric character.

 

 

Step 3 In the Advanced tab, enter the values for the criteria that you want to configure for your administrator authentication process.

Table 16-7describes the fields in the Advanced tab.

 

 

User Guide for Cisco Secure Access Control System 5.3

 

 

 

 

 

 

OL-24201-01

 

 

16-9

 

 

 

 

 

Page 484 Page 486
Page 485
Image 485
Cisco Systems OL-24201-01 manual Configuring Authentication Settings for Administrators, 16-9
Page 484 Page 486
Top Page Image Contents