Guidelines for Cisco UCS Passwords
Each locally authenticated user account requires a password. A user with admin or aaa privileges can configure Cisco UCS Manager to perform a password strength check on user passwords. Listed in Table 1 are the allowed ASCII characters for UCS passwords.
ASCII Printable Characters |
Description |
---|---|
A-Z |
uppercase letters A to Z |
a-z |
lowercase letters a to z |
0-9 |
digits 0 to 9 |
! |
exclamation mark |
" |
quotation mark |
% |
percent sign |
& |
ampersand |
' |
apostrophe |
( |
left parenthesis |
) |
right parenthesis |
* |
asterisk |
+ |
plus sign |
, |
comma |
- |
hyphen |
. |
period |
/ |
slash |
: |
colon |
; |
semicolon |
< |
less-than |
> |
greater-than |
@ |
at sign |
[ |
left square bracket |
\ |
backslash |
] |
right square bracket |
^ |
caret |
_ |
underscore |
` |
grave accent |
{ |
left curly brace |
| |
vertical bar |
} |
right curly brace |
~ |
tilde |
Cisco recommends using a strong password; otherwise, the password strength check for locally authenticated users, Cisco UCS Manager rejects any password that does not meet the following requirements:
-
Must contain a minimum of eight characters and a maximum of 80 characters.
-
If the password strength check is turned on, the minimum password length is variable and can be set from a minimum of 6 to a maximum of 80 characters. Note
The default is 8 characters.
-
Must contain at least three of the following:
-
Lower case letters
-
Upper case letters
-
Digits
-
Special characters
-
-
Must not contain a character that is repeated more than three times consecutively, such as aaabbb.
-
Must not be identical to the username or the reverse of the username.
-
Must pass a password dictionary check. For example, the password must not be based on a standard dictionary word.
-
Must not contain the following symbols: $ (dollar sign), ? (question mark), and = (equals sign).
-
Should not be blank for local user and admin accounts.