How do I remove password complexity rules from CUCM 11.x?

Nadav · ‎03-14-2016

Hi everyone,

From the documentation I've been able to disable a few constraints, yet there are still complexity rules on the password. Is there any way to allow using adjacent characters,dictionary words, etc. in security and admin passwords?

I ask because if you upgrade the system to 11.x then it accepts the old OS and GUI passwords, even if they wouldn't be acceptable for a fresh install. This makes it a problem to later use a restore DRS if you have to restore from a fresh install since the security passwords need to match for DRS.

Thanks!

Marcelo Morais · ‎03-14-2016

Hi,

in version 10.x you can in CUCM Administration > User Management tab > User Settings > Credential Policy, uncheck the 'Check for Trivial Passwords'.

Did you try the same in version 11.x?

Hope this helps.

Nadav · ‎03-15-2016

Hi,

Those credentials are only for the application and end users. For the OS and Security passwords there are credentials in place, such as no adjacent characters, too systematic and so on.

Carlo Poggiarelli · ‎03-15-2016

Hi.

On command line:

set password complexity character disable

HTH

Regards

Carlo

Please rate all helpful posts "The more you help the more you learn"

Nadav · ‎03-15-2016

Tried that, still performs complexity checks. It checks for adjacent characters and such regardless of password character complexity configuration. From what I can tell the password character complexity is just the number of unique characters in the password. For example:

1234555677778 would be 8 unique characters.

Rob Huffman · ‎03-15-2016

Hi there,

I just wanted to add a reference to the good tips from my friends Marcelo & Carlo here (+5 each!)

I believe this bug addresses the DRS restore issue you noted above with a workaround and recommended upgrade ;

Unable to restore if security password has changed

CSCuv64658

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCuv64658

Cheers!

Rob