Solved: ACS to ISE and internal user password policies

gvanbon · ‎02-28-2017

Hi,

Partner is migrating customer from ACS 5.x to ISE.

He is complaining that the password policy of internal users in ISE is only a global one for all users.

In ACS he was able to use different password policies for different users.

Is this correct ?

Thanks

kthiruve · ‎02-28-2017

Hi Gerard,

I am not quite sure what you mean by password policies for different users.

ACS has separate password policies for Administrators and Users. Are you referring to that?

In ISE, we do have the same. You have to go to Administration --> system--> Admin access --> Password policy for administrators.

You have to go to Administration --> Identity management --> Settings --> User authentication settings for user password policy.

Hope this helps.

Thanks

Krishnan

View solution in original post

ldanny · ‎02-28-2017

Internal Users is an Identity store data base which is internal to ISE , you can create users and passwords just as you would with any external identity stores ( AD , LDAP etc... ) ,

You could even create Internal users and use passwords from an external Identity Store., there are many options.
This link should help you out.

Cisco Identity Services Engine Administrator Guide, Release 2.1 - Manage Users and External Identity Sources [Cisco Ide…

Thanks

Danny

kthiruve · ‎02-28-2017

Hi Gerard,

I am not quite sure what you mean by password policies for different users.

ACS has separate password policies for Administrators and Users. Are you referring to that?

In ISE, we do have the same. You have to go to Administration --> system--> Admin access --> Password policy for administrators.

You have to go to Administration --> Identity management --> Settings --> User authentication settings for user password policy.

Hope this helps.

Thanks

Krishnan