Configuring System Information 161Managing PasswordsPassword management provides increased network security and improved password control. Passwords forSSH, Telnet, HTTP, HTTPS, and SNMP access are assigned security features, which include:• Defining minimum password lengths• Password expiration• Prevents frequent password reuse• Locks users out after failed login attemptsPassword aging starts immediately, when password management is enabled. Passwords expire based onthe user-defined time/day definition expiration. Ten days prior to password expiration, the devicedisplays a password expiration warning message.After the password has expired, users can login three additional times. During the three remaining loginsan additional warning message displays informing the user that the password must be changedimmediately. If the password is not changed, users are locked out of the system, and can only log in usingthe console. Password warnings are logged in the Syslog file.If a privilege level is redefined, the user must also be redefined. However, the password age time expiresfrom the initial user definition.The user is notified before the password expires and that it must be changed. However, this notificationis not displayed to the Web user.Password management supports the Technical Information Center (TIC) feature.To open the Password Management page, click System→ Management Security→ Password Managementin the tree view.Figure 6-57. Password Management