cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
417
Views
1
Helpful
3
Replies

cisco ISE TACACS User authentication setting

ssocsupport
Level 1
Level 1

Recently got a requirement that Users need to be set with password length of 12 characters length and Expiration time of 180 days. The password policy is already in place for other users with different password length and Expiration time.

I would like to know if we can create multiple password policy and map it to the user in TACACS. Below are the steps where I see the options.

Administration ---> Identity Management ---> User authentication settings ---> Password policy

1 Accepted Solution
3 Replies 3

@ssocsupport I think password policy is global for all users in the local ISE database. This password policy would not apply if you are using an External Identity Source (AD/LDAP etc), those directory services would have their own password policies.

@Rob Ingram Thank you for the quick response. So, I believe I cannot set a separate password policy for a group of users in the local ISE database.