R2511-HP MSR Router Series Security Command Reference(V5)
530
Syntax
password-control complexity { same-character | user-name } check
undo password-control complexity { same-character | user-name } check
Default
No user password complexity checking is performed, and a password can contain the username, the
reverse of the username, or a character repeated three or more times consecutively.
Views
System view
Default command level
2: System level
Parameters
same-character: Refuses a password that contains any character repeated consecutively three or more
times.
user-name: Refuses a password that contains the username or the reverse of the username.
Usage guidelines
You can enable both username checking and repeated character checking.
After the password complexity checking is enabled, complexity-incompliant passwords will be refused.
Examples
# Configure the password complexity checking policy, refusing any password that contains the username
or the reverse of the username.
<Sysname> system-view
[Sysname] password-control complexity user-name check
Related commands
display password-control
password-control composition
Use password-control composition to configure the password composition policy.
Use undo password-control composition to restore the default.
Syntax
password-control composition type-number type-number [ type-length type-length ]
undo password-control composition
Default
In non-FIPS mode, the password using the global composition policy must contain at least one character
type from uppercase letters, lowercase letters, digits or special characters (see "password")
, and at least
one character for each type.
In FIPS mode, the password using the global composition policy must contain four character types and
at least one character for each type.