Supported Platforms
Related Documentation
- ACX, EX, M, MX, PTX, QFX, SRX, T Series
- password (Login)
- M, MX, PTX, QFX, T Series
- Special Requirements for Junos OS Plain-Text Passwords
Example: Changing the Requirements for Junos OS Plain-Text Passwords
This example shows how to set various maximum and minimum requirements for plain-text passwords to increase password strength.
Requirements
This example requires a device running Junos 12.2 or greater. The minimum-length and maximum-length password requirements statements are available in earlier releases, however, you must have Junos OS Release 12.2 or greater to configure minimum-lower-cases, minimum-numerics, minimum-punctuations, or minimum-upper-cases.
Overview
You can use a variety of requirements to strengthen plain-text passwords for greater security. Junos OS provides a number of possible configurations at the [edit system login password] hierarchy level that allow you to require users to create plain-text passwords that conform to a particular set of requirements that may include such things as length, number of changes, type of characters, numbers, or letter case.
Configuration
CLI Quick Configuration
To quickly configure this example, copy the following commands, paste them into a text file, remove any line breaks, change any details necessary to match your network configuration, and then copy and paste the commands into the CLI at the [edit] hierarchy level.
set system login password minimum-length 12
set system login password maximum-length 22
set system login password minimum-numerics 1
set system login password minimum-upper-cases 1
set system login password minimum-lower-cases 1
set system login password minimum-punctuations 1
Configuring Requirements for Plain-Text Passwords
Step-by-Step Procedure
This example configures password requirements that require the user to creat a password that has a minimum length of 12 characters, a maximum length of 22 characters, and that includes at least one lower-case letter, at least one upper-case letter, at least one punctuation character, and at least one numeric character.
- Navigate to configuration mode in the [system login password]
hierarchy level.user@host> edit [edit]user@host# edit system login password
- Set a minimum length requirement of 12 characters and
a maximum length requirement of 22 characters for user passwords.[edit system login password]user@host# set minimum-length 12[edit system login password]user@host# set maximum-length 22
- Require users to set a password that has at least one
lower-case letter and at least one upper-case letter.[edit system login password]user@host# set minimum-lower-cases 1[edit system login password]user@host# set minimum-upper-cases 1
- Require users to set a password that has at least one
punctuation-class character and at least one number.[edit system login password]user@host# set minimum-punctuations 1[edit system login password]user@host# set minimum-numerics 1
Results
From configuration mode, confirm your configuration by entering the show command at the edit system login password hierarchy level. if the output does not display the intended configuration, repeat the instructions in this example to correct the configuration.
Related Documentation
- ACX, EX, M, MX, PTX, QFX, SRX, T Series
- password (Login)
- M, MX, PTX, QFX, T Series
- Special Requirements for Junos OS Plain-Text Passwords
Published: 2013-12-03
Supported Platforms
Related Documentation
- ACX, EX, M, MX, PTX, QFX, SRX, T Series
- password (Login)
- M, MX, PTX, QFX, T Series
- Special Requirements for Junos OS Plain-Text Passwords
