cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
188
Views
2
Helpful
1
Replies

Max password length for Cisco ISE service

tiwang
Level 3
Level 3

hi out there

I simply cannot find it - what is the maxium password length Cisco ISE3.2 can handle - both for the local accounts accessing the ISE cluster and the password length ISE can handle when f.ex using the PassiveID connector to configure a remote service accounts password 

1 Accepted Solution

Accepted Solutions

davidgfriedman
Level 1
Level 1

For (non-admin) local accounts in ISE v3.2, i.e. rulesets and policies, the password character range is 4 to 127 here under Administration -> Identity Management -> Settings -> User Authentication Settings -> Password policy:

davidgfriedman_0-1723036397453.png

For local admin accounts in ISE v3.2 (to login to the admin page or use ERS or OpenAPI calls), the password character range is  also 4 to 127 characters long.  It can be found under Administration->System->Admin Access->Authentication->Password Policy:

davidgfriedman_1-1723036637643.png

I have never tested passive ID or remote logins for anything nearly that long, so I cannot say if those limits are matched, however, up to 127 characters leaves a lot of wiggle room, as I'd doubt most companies go over 20-30 characters these days.

Regards,
David

View solution in original post

1 Reply 1

davidgfriedman
Level 1
Level 1

For (non-admin) local accounts in ISE v3.2, i.e. rulesets and policies, the password character range is 4 to 127 here under Administration -> Identity Management -> Settings -> User Authentication Settings -> Password policy:

davidgfriedman_0-1723036397453.png

For local admin accounts in ISE v3.2 (to login to the admin page or use ERS or OpenAPI calls), the password character range is  also 4 to 127 characters long.  It can be found under Administration->System->Admin Access->Authentication->Password Policy:

davidgfriedman_1-1723036637643.png

I have never tested passive ID or remote logins for anything nearly that long, so I cannot say if those limits are matched, however, up to 127 characters leaves a lot of wiggle room, as I'd doubt most companies go over 20-30 characters these days.

Regards,
David