GigaVUE‑OS Password Policies

GigaVUE‑OS Nodes observes several policies designed to ensure strong password protection for user accounts.

Policy

Description

Password Standards

Passwords must meet the following standards:

include 8-30 character
include at least one numeral
include at least one lower case letter
include at least one upper case letter
include at least one special character (for example, !, #, $, %, ^, &, or * –ASCII 0x21, 0x2F, 0x3A, 0x40, 0x5B, 0x5F, 0x7B, 0x7E)
Note: The following special characters are not supported:
"
/
?

However, you can use these characters in the password as described in GigaVUE‑OS Password Policiessection.

must not include user-name or parts of full-name

Password Recommendations

The following are password recommendations:

passwords should be configured on all user accounts
passwords should be changed on default accounts such as the monitor account
passwords should be unique, meaning never used elsewhere or at another time
passwords should not be shared, meaning each user account should have their own password
passwords should be long, meaning at least 15 to 20 characters
passwords should be complex, meaning a mix of numerals, upper case letters, lower case letters, and special characters

Note:  It is recommended that you do not include the at sign, @, in passwords. Under some circumstances, this can lead to the failure of some CLI commands, such as image fetch or configuration upload.

Note:  The monitor account is designed to give a read-only access to the GigaVUE‑OS. The monitor account is disabled by default. To enable it, assign a password to the account. GigaVUE‑FM and GigaVUE‑OS H-VUE users can use the monitor account as long as it is enabled (has a password).

Password Change Rights

Only admin users can change the passwords of other users.

Password on Default admin Use

Starting in software version 4.7, the password on the default admin account must be changed during initial configuration using configuration jump-start.

If the following message is displayed, the system administrator must change the default password on the admin account:

ATTENTION: Admin account default password must be changed for security.

If the system administrator tries to change the password to the default, it will not be allowed and the following message will be displayed:

Default password is not allowed.

If the node was upgraded through GigaVUE‑FM and the default password for the admin account has not been changed, the following message is displayed:

Admin account password must be changed via the CLI to a non-default value for security purposes.