3(1) and later, the security passwords min-length command is available to set the
minimum character length for all passwords. The security passwords min-length command provides enhanced security
access by specifying the minimum password length, thereby eliminating common passwords that are prevalent on most
networks, such as "admin" or "cisco." This command affects user passwords, enable passwords, enable secret, and line
passwords. After this command is enabled, any new password that is less than the specified length will fail, but the
existing passwords will function.
In Cisco IOS Software Release 12.3(1) and later, the security authentication failure rate command is available to
configure the number of allowable unsuccessful login attempts. The security authentication failure rate command
provides enhanced security access to the router by generating syslog messages after the number of unsuccessful login
attempts exceeds the configured threshold rate. This command ensures that there are no continuous failures to access
the router??”for example, to combat a brute force type attack.
Password Encryption
The service password-encryption command in global configuration mode is used to encrypt passwords in the configuration
and prevents unauthorized users from viewing the password in the configuration.
Pages:
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119