Information
This checks all new passwords to ensure that they block username inclusion (in either forward or reverse order.)
Rationale:
This is one of several settings that, when taken together, ensure that passwords are sufficiently complex as to thwart brute force and dictionary attacks.
Solution
Navigate to Device > Setup > Management > Minimum Password Complexity
Set Block Username Inclusion (Including reversed) to checked
Impact:
If username inclusion is allowed in passwords, they become much easier to compromise. This prevents the use of the default (and trivial) admin / admin password combination.
Default Value:
Not enabled.