Configure Password Strength and Complexity Settings on the Cisco Business 250 or 350 Switch

Available Languages

Download Options

PDF (149.8 KB)
View with Adobe Reader on a variety of devices
ePub (221.6 KB)
View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
Mobi (Kindle) (254.2 KB)
View on Kindle device or Kindle app on multiple devices

Updated:January 6, 2021

Document ID:1609972468926352

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

VLAN Configuration on the 200/300 Series Managed Switches

Objective

The first time that you log in to the web-based utility of your switch, you have to use the default username and password which is: cisco/cisco. You are then required to enter and configure a new password for the cisco account. Password complexity is enabled by default. If the password that you choose is not complex enough, you are prompted to create another password.

Since passwords are used to authenticate users accessing the device, simple passwords are potential security hazards. Therefore, password complexity requirements are enforced by default and may be configured as necessary.

This article provides instructions on how to define password complexity rules on the user accounts on your Cisco Business switch.

Applicable Devices | Software Version

CBS250 (DataSheet) | 3.0.0.69 (Download latest)
CBS350 (Data Sheet) | 3.0.0.69 (Download latest)
CBS350-2X (Data Sheet) | 3.0.0.69 (Download latest)
CBS350-4X (Data Sheet) | 3.0.0.69 (Download latest)

Configure Password Strength and Complexity Settings on your Switch

Step 1. Log in to the web-based utility of your switch then choose Advanced in the Display Mode drop-down list.

Step 2. Choose Security > Password Strength.

Step 3. (Optional) Uncheck the Enable Password Aging check box to disable the password aging feature. If this option is enabled, the user is prompted to change the password when the specified Password Aging Time expires. This feature is enabled by default.

Step 4. Enter the number of days that can elapse before the user is prompted to change the password. The default value is 180, and the range is 1 to 356 days. In this example, 90 is used.

Note: If you disabled this feature in Step 3, skip to Step 5.

Note: Password aging also applies to zero-length or no password.

Step 5. (Optional) Check the Password Complexity Settings check box to enable complexity rules for passwords. If this feature is enabled, new passwords must conform to the following default settings:

Have a minimum length of eight characters.
Contain characters from at least three character classes (uppercase letters, lowercase letters, numbers, and special characters available on a standard keyboard).
Are different from the current password.
Contain no character that is repeated more than three times consecutively.
Do not repeat or reverse the users name or any variant reached by changing the case of the characters.
Do not repeat or reverse the manufacturers name or any variant reached by changing the case of the characters.

Note: If you do not want to enable Password Complexity Settings, skip to Step 10.

Step 6. (Optional) Enter the minimal number of characters required for passwords in the Minimal Password Length field. The default value is 8, and the range is 0 to 64 characters.

Note: A zero-length or no password is allowed, and can still have password aging assigned to it.

Note: In this example, 12 is used.

Step 7. Enter the number of times that a character can be repeated in the Allowed Character Repetition field. The default value is 3, and the range is 0 to 16 instances.

Note: In this example, 2 is used.

Step 8. Enter the number of character classes which must be present in a password. Up to four distinct character classes may be enforced for passwords. The default value is 3, and the range is 0 to 4 character classes.

The classes are:

1 - Lower Case
2 - Upper Case
3 - Digits or Numbers
4 - Symbols or Special Characters

Note: In this example, 4 is used.

Step 9. (Optional) Check the Enable The New Password Must Be Different Than the Current One check box to require a unique password upon password change.