password-control history enable
reset password-control blacklist
password-control length
Use password-control length to set the minimum password length.
Use undo password-control length to restore the default.
Syntax
password-control length length
undo password-control length
Default
In non-FIPS mode:
The global minimum password length is 10 characters.
In FIPS mode:
The global minimum password length is 15 characters.
In both non-FIPS and FIPS modes:
The minimum password length for a user group equals the global setting. The minimum password
length for a local user equals that of the user group to which the local user belongs.
Views
System view
User group view
Local user view
Predefined user roles
network-admin
Parameters
length: Specifies the minimum password length in characters. The value range for this argument is 4
to 32 in non-FIPS mode, and 15 to 32 in FIPS mode.
Usage guidelines
The minimum length setting depends on the view:
•
The setting in system view has global significance and applies to all user groups.
•
The setting in user group view applies to all local users in the user group.
•
The setting in local user view applies only to the local user.
A minimum password length with a smaller application scope has higher priority. The system prefers
to use the minimum password length in local user view for a local user.
•
If no minimum password length is configured for the local user, the system uses the minimum
password length for the user group to which the local user belongs.
•
If no minimum password length is configured for the user group, the system uses the global
minimum password length.
Examples
# Set the global minimum password length to 16 characters.
<Sysname> system-view
[Sysname] password-control length 16
417