Security Enhancements
This section lists enhancements introduced to support Cisco Product Security Requirements and the Product Security Baseline (PSB). For more information about Cisco Product Security Requirements, refer to: https://www.cisco.com/c/en/us/about/security-center/security-programs/secure-development-lifecycle/sdl-process.html
PSB Requirements Support for CPS Platform
Feature Summary and Revision History
Applicable Product(s) or Functional Area |
CPS |
Applicable Platform(s) |
Not Applicable |
Default Setting |
Enabled - Always-on |
Related Changes in This Release |
Not Applicable |
Related Documentation |
Contact your Cisco Account representative |
Revision Details |
Release |
---|---|
First introduced |
19.3.0 |
Feature Description
CPS now provides passphrase generation. By following guidelines, you can create a passphrase/password, an alternative randomly generated passphrase is provided by passwdqc module where you can use that passphrase, or you can create your own.
Starting CPS 19.3.0 release:
-
The administrative passphrase lifetime (PASS_MAX_DAYS) has been increased to 99999 from 60.
-
Warn age (PASS_WARN_AGE) has been increased to 15 from 7.
-
Minimum length (PASS_MIN_LEN) has been decreaded to 4 from 8.
As the administrative passphrase lifetime is 99999, PASS_WARN_AGE
parameter is not useful.
For more information, see Update Default Credentials section in CPS Installation Guide for VMware.