Cisco Systems VPN 3000 Minimum Password Length, Allow Alphabetic-Only Passwords

Configuration | User Management | Groups | Add or Modify (Internal)

12-21

VPN 3000 Concentrator Series User Guide

setting, clear the check box. If you clear the check bo x, you must also enter or change any

corresponding Value field; do not leave the field bla nk.

•The Value column thus shows either base-group parameter settings that also apply to this group

(Inherit? checked), or unique parameter settings configured for this group (Inherit? cleared).

Note: The setting of the Inherit? check box takes priority over an entry in a Value field. Examine this box before

continuing and be sure its setting reflects your inten t.

Access Hours

Click the drop-down menu button and select the named hours when this group’s remote-access users can

access the VPN Concentrator. Configure access hours on the Configuration | Policy Management | Access

Hours screen. Default entries are:

-No Restrictions- = No named access hours applied, which means that there are no restrictions on

access hours.

Never = No access at any time.

Business Hours = Access 9 a.m. to 5 p.m., Monday through Friday.

Additional named access hours that you have configured also appear on the list.

Simultaneous Logins

Enter the number of simultaneous logins permitted for a single user in this group. The minimum is 0,

which disables login and prevents user access. While there is no maximum limi t, allowing several could

compromise security and affect performance.

Minimum Password Length

Enter the minimum number of characters f or this group’s user passwords. The minimum is 1, and the

maximum is 32. To protect security, we strongly recommend 8 or higher.

Allow Alphabetic-Only Passwords

Check the box to allow this group’s user passwords with alphabetic characters only. This option applies

only to users who are configured in and authenticated by the VPN Concentrator internal authentication

server. To protect security, we strongly recommend that you not allow such passwords; i.e., that you

require passwords to be a mix of alphabetic characters, numbers, and symbols, such as 648e&9G#.

Idle Timeout

Enter the group’s idle timeout period in minutes. If there is no communication activity on a user

connection in this period, the system terminates the connection. The minimum is 1, and the maximum

is 2147483647 minutes (over 4000 years). To disable timeout and allow an unlimited idle period, enter