user-password complexity-check

Function

The user-password complexity-check command enables password complexity check.

The undo user-password complexity-check command disables password complexity check.

By default, password complexity check is enabled on a device. A password must contain at least two of the following: uppercase letters, lowercase letters, digits, and special characters.

Format

user-password complexity-check [ three-of-kinds ]

undo user-password complexity-check

Parameters

Parameter	Description	Value
three-of-kinds	Indicates that a password must contain at least three of the following: uppercase letters, lowercase letters, digits, and special characters.	-

Views

AAA view

Default Level

3: Management level

Usage Guidelines

Usage Scenario

In the versions earlier than V200R003, the device uses simple user name and password rules, so the user names and passwords are easy to manage and remember; however, weak passwords have security risks. In V200R003 and later versions, the device poses stricter requirements on user names and passwords. After you create a local user using the local-user command, the password must pass a complexity check performed by the device.

In V200R005 and later versions, you can choose whether to enable password complexity check.

Precautions

To ensure device security, ensure that password complexity check is enabled and change the password periodically.

Example

# Disable password complexity check.

<HUAWEI> system-view
[HUAWEI] aaa
[HUAWEI-aaa] undo user-password complexity-check