Information
Cisco recommends using a strong password; otherwise, the password strength check for locally authenticated users, the system rejects any password that does not meet the following requirements:
- Must contain a minimum of eight characters and a maximum of 80 characters.
- Must contain at least three of the following:
- Lower case letters
- Upper case letters
- Digits
- Special characters
- Must not contain a character that is repeated more than three times consecutively, such as aaabbb.
- Must not be identical to the username or the reverse of the username.
- Must pass a password dictionary check. For example, the password must not be based on a standard dictionary word.
- Must not contain the following symbols: $ (dollar sign), ? (question mark), and = (equals sign).
- Should not be blank for local user and admin accounts.
The options are:
- Yes - Enforces password strength.
- No - Disables the password strength checking.
The default is Yes.
Solution
Log into the Cisco APIC Web Console:
Navigate to 'Admin' -> 'AAA' -> 'Security'.
Click the 'Management Settings' tab.
In the 'Properties Section' section click 'Password Strength Check'.
In the dialog that opens ensure 'Password Strength Test Type' is set to an appropriate value for your environment.