user-password complexity-check(AAA view)

Function

The user-password complexity-check command enables the password strength check for local users.

The undo user-password complexity-check command disables the password strength check for local users.

By default, the password complexity check is disabled for local users.

Format

user-password complexity-check

undo user-password complexity-check

Parameters

None

Views

AAA view

Default Level

3: Management level

Task Name and Operations

Task Name	Operations
aaa	write

Usage Guidelines

Usage Scenario

To prevent security risks such as account stealing, run the user-password complexity-check command to raise password strength requirements. After the user-password complexity-check command is configured, local users must configure a password containing uppercase and lowercase letters, numerals, and special characters. The newly configured password cannot be the same as any of the most recent 10 passwords.

Prerequisites

A local user has logged in to the device as an administrator.

Configuration Impact

After the user-password complexity-check command is run, the password newly configured in the AAA must comply with the following rules:

The password must contain numerals, upper- and lower-case letters, and special characters, spaces or question marks not supported.
The password cannot be the same as any of the most recent 10 passwords.

Precautions

If the login password does not satisfy the password strength requirements, the system prompts you to change your password. Change your password based on the prompted message.

After the undo user-password complexity-check is run, the user password complexity is controlled by the user-security-policy enable command.

Example

# Enable the password strength check in the AAA view for local users.

<HUAWEI> system-view
[~HUAWEI] aaa
[~HUAWEI-aaa] user-password complexity-check