Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1565
Views
50
Helpful
4
Replies

Type 9 password with common-criteria policy

Go to solution
owen2
Level 1
Level 1

‎03-10-2022 09:50 PM

HI Guys,

 

is there any way to set password type 9 that complies with the common-criteria policy on routers running ios 17

aaa common-criteria policy password-policy
min-length 8
max-length 25
numeric-count 1
upper-case 2
lower-case 2
special-case 1
char-changes 4

 

 

Labels:
1 Accepted Solution

Accepted Solutions

Go to solution
owen2
Level 1
Level 1
In response to balaji.bandi

‎03-10-2022 11:00 PM

@balaji.bandi 

thanks.

i found the solution.

username admin90 common-criteria-policy password-policy secret &1H&@0Nd28c7)*by72

wanted to set a password using type 9 and match the criteria.

View solution in original post

4 Replies 4

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎03-10-2022 10:46 PM

as per i know common-criteria policy guide user on what kind of password to setup a combination of mentioned rules.

 

Type 9  - password will be encrypted when the router store it in Run/Start Files using scrypt as the hashing algorithm.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
owen2
Level 1
Level 1
In response to balaji.bandi

‎03-10-2022 11:00 PM

@balaji.bandi 

thanks.

i found the solution.

username admin90 common-criteria-policy password-policy secret &1H&@0Nd28c7)*by72

wanted to set a password using type 9 and match the criteria.

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to owen2

‎03-10-2022 11:51 PM

Glad you able to understand and resolve the issue, appreciated your feedback and marking as a solution.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Go to solution
cisco-newbie2022
Level 1
Level 1
In response to balaji.bandi

‎01-25-2024 07:03 AM

what are the commands to set the policy? The usual command of "aaa common-criteria policy PASSWORD_POLICY" doesnt work on a 9300 switch, running 17.09.04a. There doesn't seem to be a way to set password policies such as length and complexities? 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents