04-16-2007 09:32 PM - edited 03-09-2019 05:48 PM
Hi, can anyone tell me whether it is possible to configure Cisco Secure so that the passwords for locally configure User IDs have to be changed after a set period of time, for example 90 days?
Am currently using version 4.0 for Windows.
Thanks James.
04-17-2007 04:21 AM
James
Just to clarify the situation: are you describing a situation where the router or switch is configured to use Cisco Secure (ACS) for authentication and has "local" configured as an alternative/backup method and you want to enforce that the local passwords get changed periodically? Since local is used, by definition, when the router or switch is not communicating with ACS then I do not see how ACS could require that the passwords be changed.
If I have misunderstood something in your request then please clarify.
HTH
Rick
04-17-2007 05:42 AM
When you say "local" do you mean user accounts created:
a) on the switches themselves using the "username XXXXX password YYYYY" command; or
b) in the CiscoSecure database on the Cisco ACS?
If it's the latter, the feature you're looking for is password aging. Take a look at "Enabling Password Aging for the ACS Internal Database" at http://www.cisco.com/en/US/customer/products/sw/secursw/ps2086/products_user_guide_chapter09186a008052e9ad.html#wp525115
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide