Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
92
Views
1
Helpful
3
Replies

cisco ISE TACACS User authentication setting

Go to solution
ssocsupport
Level 1
Level 1

‎08-06-2024 11:11 PM

Recently got a requirement that Users need to be set with password length of 12 characters length and Expiration time of 180 days. The password policy is already in place for other users with different password length and Expiration time.

I would like to know if we can create multiple password policy and map it to the user in TACACS. Below are the steps where I see the options.

Administration ---> Identity Management ---> User authentication settings ---> Password policy

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
3 Replies 3

Go to solution
Rob Ingram
VIP
VIP

‎08-06-2024 11:32 PM

@ssocsupport I think password policy is global for all users in the local ISE database. This password policy would not apply if you are using an External Identity Source (AD/LDAP etc), those directory services would have their own password policies.

0 Helpful

Go to solution
ssocsupport
Level 1
Level 1
In response to Rob Ingram

‎08-06-2024 11:36 PM

@Rob Ingram Thank you for the quick response. So, I believe I cannot set a separate password policy for a group of users in the local ISE database.

0 Helpful
Customers Also Viewed These Support Documents