Password Security - Cisco TelePresence Administrator's Manual

Default administrator account
The VCS has a default local administrator account with full Read-write access. This account is used to log
into the VCS using the web UI or the CLI.
The username for this account is admin (all lower case) and the default password is TANDBERG (all upper
case). You cannot delete the default administrator account or change its admin username, but you should
change the password as soon as possible. Choose a strong password, particularly if administration over IP is
enabled.
Administrators can always log in using the local admin account even if remote administrator authentication is
enabled. If you forget the password for the admin account, you can still log in as another administrator user
with read-write access and change the password for the admin account.
If you do not have any other such administrator users set up, or you have forgotten those passwords as well,
it is possible to reset the password for the admin account as long as you have physical access to the VCS.
See the Resetting an administrator or root password
Additional administrator accounts
You can add up to 15 additional administrator accounts, which can be used to log in to the web user interface
but not the CLI. If remote administrator authentication is enabled, only the local admin account is displayed.
Note that:
The Configuration Log
n
and can be used as an audit trail. This is particularly useful when you have multiple administrator accounts.
More than one administrator session can be running at the same time. These sessions could be using the
n
web interface, command line interface, or a mixture of both. This may cause confusion if each
administrator session attempts to modify the same configuration settings - changes made in one session
will overwrite changes made in another session.

Password security

The Password security
not administrator passwords must meet a minimum level of complexity before they are accepted.
If Enforce strict passwords is set to On, all subsequently configured administrator passwords must contain
at least 15 ASCII characters made up of at least:
2 lowercase letters ['a'..'z']
n
2 uppercase letters ['A'..'Z']
n
2 numeric values ['0'..'9']
n
2 special characters [such as '@' or '$']
n
If Enforce strict passwords is set to Off, no checks are made on administrator passwords.
Note that:
Regardless of this setting, it is not possible to set a blank password for any administrator account.
n
Cisco VCS Administrator Guide (X7.1)
records all login attempts and configuration changes made using the web interface,
page (Maintenance > Login accounts > Password
section for details.
Maintenance
security) controls whether or
Page 280 of 479