Fortinet white logo
Fortinet white logo

CLI Reference

config user password-policy

config user password-policy

Configure user password policy.

config user password-policy
    Description: Configure user password policy.
    edit <name>
        set expire-days {integer}
        set expire-status [enable|disable]
        set expired-password-renewal [enable|disable]
        set min-change-characters {integer}
        set min-lower-case-letter {integer}
        set min-non-alphanumeric {integer}
        set min-number {integer}
        set min-upper-case-letter {integer}
        set minimum-length {integer}
        set reuse-password [enable|disable]
        set reuse-password-limit {integer}
        set warn-days {integer}
    next
end

config user password-policy

Parameter

Description

Type

Size

Default

expire-days

Time in days before the user's password expires.

integer

Minimum value: 0 Maximum value: 999

180

expire-status

Enable/disable password expiration.

option

-

disable

Option

Description

enable

Passwords expire after expire-day days.

disable

Passwords do not expire.

expired-password-renewal

Enable/disable renewal of a password that already is expired.

option

-

disable

Option

Description

enable

Enable renewal of a password that already is expired.

disable

Disable renewal of a password that already is expired.

min-change-characters

Minimum number of unique characters in new password which do not exist in old password.

integer

Minimum value: 0 Maximum value: 128

0

min-lower-case-letter

Minimum number of lowercase characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-non-alphanumeric

Minimum number of non-alphanumeric characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-number

Minimum number of numeric characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-upper-case-letter

Minimum number of uppercase characters in password.

integer

Minimum value: 0 Maximum value: 128

0

minimum-length

Minimum password length.

integer

Minimum value: 8 Maximum value: 128

8

name

Password policy name.

string

Maximum length: 35

reuse-password

Enable/disable reuse of password. If both reuse-password and min-change-characters are enabled, min-change-characters overrides.

option

-

enable

Option

Description

enable

Users are allowed to reuse the same password up to a limit.

disable

Users must create a new password.

reuse-password-limit

Number of times passwords can be reused.

integer

Minimum value: 0 Maximum value: 20

0

warn-days

Time in days before a password expiration warning message is displayed to the user upon login.

integer

Minimum value: 0 Maximum value: 30

15

config user password-policy

config user password-policy

Configure user password policy.

config user password-policy
    Description: Configure user password policy.
    edit <name>
        set expire-days {integer}
        set expire-status [enable|disable]
        set expired-password-renewal [enable|disable]
        set min-change-characters {integer}
        set min-lower-case-letter {integer}
        set min-non-alphanumeric {integer}
        set min-number {integer}
        set min-upper-case-letter {integer}
        set minimum-length {integer}
        set reuse-password [enable|disable]
        set reuse-password-limit {integer}
        set warn-days {integer}
    next
end

config user password-policy

Parameter

Description

Type

Size

Default

expire-days

Time in days before the user's password expires.

integer

Minimum value: 0 Maximum value: 999

180

expire-status

Enable/disable password expiration.

option

-

disable

Option

Description

enable

Passwords expire after expire-day days.

disable

Passwords do not expire.

expired-password-renewal

Enable/disable renewal of a password that already is expired.

option

-

disable

Option

Description

enable

Enable renewal of a password that already is expired.

disable

Disable renewal of a password that already is expired.

min-change-characters

Minimum number of unique characters in new password which do not exist in old password.

integer

Minimum value: 0 Maximum value: 128

0

min-lower-case-letter

Minimum number of lowercase characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-non-alphanumeric

Minimum number of non-alphanumeric characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-number

Minimum number of numeric characters in password.

integer

Minimum value: 0 Maximum value: 128

0

min-upper-case-letter

Minimum number of uppercase characters in password.

integer

Minimum value: 0 Maximum value: 128

0

minimum-length

Minimum password length.

integer

Minimum value: 8 Maximum value: 128

8

name

Password policy name.

string

Maximum length: 35

reuse-password

Enable/disable reuse of password. If both reuse-password and min-change-characters are enabled, min-change-characters overrides.

option

-

enable

Option

Description

enable

Users are allowed to reuse the same password up to a limit.

disable

Users must create a new password.

reuse-password-limit

Number of times passwords can be reused.

integer

Minimum value: 0 Maximum value: 20

0

warn-days

Time in days before a password expiration warning message is displayed to the user upon login.

integer

Minimum value: 0 Maximum value: 30

15