20 PASSWORD CONTROL CONFIGURATIONOPERATIONSIntroduction toPassword ControlConfigurationThe password control feature is designed to manage the following passwords:■ Telnet passwords: passwords used by the users who log in the switch throughTelnet.■ SSH passwords: passwords used by the users who log in the switch throughSSH.■ FTP passwords: passwords used by the users who log in the switch through FTP.■ Super passwords: passwords used by the users who have logged in the switchand are changing from a lower privilege level to a higher privilege level.Table 368 lists the functions provided by password control.Table 368 Functions Provided by Password ControlFunction Description ApplicationPassword aging The password aging function hasthe following sub-functions:■ Password aging time setting:users can set the aging time fortheir passwords. If a passwordages out, its user must update it,otherwise the user cannot log inthe switch.■ Password update: after apassword ages out, the user canupdate it when logging in theswitch.■ Alert before password expiration:users can set their respective alerttimes. When a user logs in thesystem and the password isabout to age out (that is, theremaining usable time of thepassword is no more than the setalert time), the switch alerts theuser to the forthcomingexpiration and prompt the userto update the password as soonas possible.Telnet and SSH passwords: allpassword aging sub-functionsare applicable.Super passwords: only thepassword aging time settingand the password updatesub-functions are applicable.FTP passwords: only thepassword aging time settingsub-function is applicable.Limitation of minimumpassword lengthThis function is used to limit theminimum length of the passwords.A user can successfully configure apassword only when the length ofthe password is not shorter than itsminimum length.Telnet, SSH, super, and FTPpasswords.
