Posted on September 16, 2020 12:33 am
 |  Asked by Carlo Taddei
Print Friendly, PDF & Email


I searched through the EOS admin guides and this forum and found no answer.

I just wanted to know if EOS supports as of today (latest Maintenance Release) Password Strength and Managment / Complexity similar to what i.e. implemented by Cisco IOS (Password Strength and Management for Common Criteria)


Best Regards,


Posted by Alexis Dacquay
Answered on September 16, 2020 2:42 pm

Hi Carlo,

Yes on length

entropy Entropy configuration
password Password configuration
session configure session settings
signature-verification Configure whether to verify signatures
ssl Configure SSL related options
arista(config-mgmt-security)#management security
arista(config-mgmt-security)#password ?
encryption-key internal storage encryption-key
minimum Minimum setting

arista(config-mgmt-security)#password minimum ?
length Number of characters

The complexity isn't configurable. Valid passwords (accepted by EOS) contain the characters A-Z, a-z, 0-9 and any of these punctuation characters:
!@#$%ˆ&*()-_=+ {}[];:<>,.?/ ?

These articles relates to Hardening EOS, including for CC.

If you are very conscious about password strength, a best practice isn't to configure static password on the device, but either centrally where you manage your complexity policy (on authentication servers), or even better: with certificate:

Post your Answer

You must be logged in to post an answer.