password-policy

To enable or configure the passwords on the system, use the password-policy command in Configuration mode. To disable this function, use the no form of this command.

password-policy option

Note The password-policy command requires a policy option (see Syntax Description). You must enter the password-expiration-enabled command before the other password-expiration commands.

Syntax Description

password-policy

The command to configure the password policy.

Note After you enter the password-policy command, you can enter the config-password-policy configuration submode.

digit-required

Requires a digit in the password.

disable-repeat-characters

Disables the ability of the password to contain more than four identical characters.

disable-cisco-password

Disables the ability to use the word Cisco or any combination as the password.

do

Exec command.

end

Exit from configure mode.

exit

Exit from this submode.

lower-case-required

Requires a lowercase letter in the password.

min-password-length

Specifies a minimum number of characters for a valid password. Integer length from 0 to 4,294,967,295.

no

Negate a command or set its defaults.

no-previous-password

Prevents users from reusing a part of their previous password.

no-username

Prohibits users from reusing their username as a part of a password.

password-expiration-days

Number of days until a password expires. Integer length from 0 to 80.

password-expiration-enabled

Enables password expiration.

Note You must enter the password-expiration-enabled command before the other password-expiration commands.

password-expiration-warning

Number of days before expiration that warnings of impending expiration begin. Integer length from 0 to 4,294,967,295.

password-lock-enabled

Locks a password after several failures.

password-lock-retry-count

Number of failed attempts before password locks. Integer length from 0 to 4,294,967,295.

upper-case-required

Requires an uppercase letter in the password.

special-required

Requires a special character in the password.

Defaults

No default behavior or values.

Command Modes

Configuration

Usage Guidelines

None.

Examples

/admin(config)# password-policy

/admin(config-password-policy)# password-expiration-days 30

/admin(config-password-policy)# exit

/admin(config)#