The password history record number command sets the maximum number of historical passwords recorded for each user.
The undo password history record number command restores the default maximum number of historical passwords recorded for each user.
By default, five historical passwords are recorded for each user.
| Parameter | Description | Value |
|---|---|---|
| number | Indicates the maximum number of historical passwords recorded for each user. If the value is set to 0, the device will not check whether a changed password is the same as any historical password. |
The value is an integer that ranges from 0 to 12. The default value is 5. |
Usage Scenario
To improve password security, it is not recommended that you use a previously used password. You can set the maximum number of historical passwords recorded for each user. When a user changes the password, the device compares the new password against the historical passwords stored on the device. If the new password is the same as a stored password, the device displays an error message to prompt the user that password change fails.
Precautions
When the number of recorded historical passwords reaches the maximum value, the later password will overwrite the earliest password on the device.
After the historical password recording function is disabled, the device does not record historical passwords; however, the passwords that have been stored are not deleted.
<HUAWEI> system-view [HUAWEI] aaa [HUAWEI-aaa] local-aaa-user password policy administrator [HUAWEI-aaa-lupp-admin] password history record number 10
<HUAWEI> system-view [HUAWEI] aaa [HUAWEI-aaa] local-aaa-user password policy access-user [HUAWEI-aaa-lupp-acc] password history record number 10