Password complexity and length settings

This topic describes the configurable parameters for enforcing password complexity and minimum length requirements. The parameters listed here are available across supported devices, though enforcement behavior might vary depending on the device model. For more information, see Product-specific behavior.

Note: Some parameters and options might differ depending on your device model and firmware.

Parameter	Values	Description
Password Complexity	None, IEEE 1686-2013, NERC CIP-007-5	Specifies the character diversity enforcement rules for new passwords: None: No password complexity enforcement. IEEE 1686-2013: Requires at least one character from each of the following categories: Uppercase (A–Z) Lowercase (a–z) Numeric (0–9) Special characters For more information, see Valid special characters in passwords. NERC CIP-007-5: Requires at least one character from three of the following four categories: Uppercase (A–Z) Lowercase (a–z) Numeric (0–9) Special characters For more information, see Valid special characters in passwords. Note: If Password Complexity is set to NERC CIP-007-5 or IEEE 1686-2013, Minimum Password Length must be 6 or greater.
Minimum Password Length	1 to the maximum password length supported by your device	The minimum allowable length for new passwords.

Parameter

Values

Description

Password Complexity

None, IEEE 1686-2013, NERC CIP-007-5

Specifies the character diversity enforcement rules for new passwords:

None: No password complexity enforcement.
IEEE 1686-2013: Requires at least one character from each of the following categories:
- Uppercase (A–Z)
- Lowercase (a–z)
- Numeric (0–9)
- Special characters
  For more information, see Valid special characters in passwords.

NERC CIP-007-5: Requires at least one character from three of the following four categories:
- Uppercase (A–Z)
- Lowercase (a–z)
- Numeric (0–9)
- Special characters
  For more information, see Valid special characters in passwords.

Note: If Password Complexity is set to NERC CIP-007-5 or IEEE 1686-2013, Minimum Password Length must be 6 or greater.

Minimum Password Length

1 to the maximum password length supported by your device

The minimum allowable length for new passwords.

Product-specific behavior

The password complexity and minimum password length are enforced for all supported devices. However, enforcement behavior might vary depending on the device model.

For the ION8650, password complexity and minimum length are enforced only within PowerLogic™ Engineering Suite. The ION8650 does not support firmware-level enforcement because it lacks the necessary registers to store these values. As a result, password complexity and length rules are not applied directly by the device firmware.

Administrators using the ION8650 should ensure that password policies are consistently applied through software-based user management tools.