In LANconfig, the field for entering the password can be found under . In a CLI session, you set or change the password with the command passwd. The maximum length of the main device password is 128 characters.
The switch Enforce device password policy sets the following policies for the main device password and the administrator passwords:
- Complexity classes
- Configure the required number of different complexity classes for passwords. Complexity classes include lower and upper case letters, numbers, and special characters. With a setting of 2, the password must include characters from at least two of these complexity classes.
- Minimum count of unique chars
- Configure the required number of unique characters for passwords.
- Minimum length
- Configure the minimum number of characters for passwords.
In the Configuration login lock section you can block access to the configuration for a few minutes after a configurable number of failed login attempts. This is an important aid against brute-force attacks on login data. A brute-force attack is the attempt by an unauthorized person to crack a password to gain access to a network, a computer or another device. To achieve this, a computer, for example, can go through all the possible combinations of letters and numbers until the right password is found. As a measure of protection against such attacks, the maximum allowed number of unsuccessful login attempts can be set. If this limit is reached, access will be barred for a certain time. The login lock only applies to the access path being used. The other access paths are still available.
