Polycom RMX 2000/4000 Administrator’s Guide
11-13
• Passwords cannot contain the User ID (User Name) in any form.
Example: A user with a User ID, ben, is not permitted to use
“123BeN321” as a password because BeN is similar to the User ID.
• Passwords cannot contain more than four digits in succession.
When the strong password option is enabled and the password does not
meet the Strong Password requirements an error, Password characteristics
do not comply with Enhance Security requirements, is displayed.
Password Length
The length of passwords is determined by the value of the
MIN_PASSWORD_LENGTH System Flag.
• Possible flag values are between 0 and 20.
•A System Flag value of 0 means this rule is not enforced, however this
rule cannot be disabled when the RMX is in Enhanced Security Mode.
•In Enhanced Security Mode, passwords must be at least 15 characters in
length (default) and can be up to 20 characters in length.
•If the MIN_PASSWORD_LENGTH flag is enabled and the password
does not meet the required length an error, Password is too short, is
displayed.
If the minimum password length is increased, valid pre-existing
passwords remain valid until users are forced to change their passwords.
Implementing Password Re-Use / History Rules
Users are prevented from re-using previous passwords by keeping a list
of previous passwords. If a password is recorded in the list, it cannot be
re-used. The list is cyclic, with the most recently recorded password
causing the deletion of the oldest recorded password.
• The number of passwords that are recorded is determined by the
value of the PASSWORD_HISTORY_SIZE System Flag. Possible
values are between 0 and 16.
• A flag value of 0 means the rule is not enforced, however this rule
cannot be disabled when the RMX is in Enhanced Security Mode.
•In Enhanced Security Mode, at least 10 passwords (default) and up to
16 passwords must be retained.
If the password does not meet this requirement, an error, New password
was used recently, is displayed.