https://community.checkpoint.com/t5/General-Topics/Configuring-Password-Policy-in-Gaia-Clish/m-p/225225#M37486 <P>Hi All,</P> <P>We have Checkpoint SG and SMS appliances running R81.10, integrated with Cisco ISE for device administration using TACACS+. All authorized administrators use their Active Directory credentials. I'm examining the Gaia password policy under Global Properties -&gt; User Accounts. There's a setting called "Expire Date." Since we use TACACS+, I'm unsure changing this setting will affects the current allowed administrators. Additionally, there are numerous settings like "Password Strength", "Password History"... under the Gaia CLI command "show password-controls..." . changing either of these settings impact our TACACS+ configuration?</P> <P>Thanks</P> Sat, 31 Aug 2024 07:45:28 GMT Ihenock1011 2024-08-31T07:45:28Z https://community.checkpoint.com/t5/General-Topics/Configuring-Password-Policy-in-Gaia-Clish/m-p/225225#M37486 <P>Hi All,</P> <P>We have Checkpoint SG and SMS appliances running R81.10, integrated with Cisco ISE for device administration using TACACS+. All authorized administrators use their Active Directory credentials. I'm examining the Gaia password policy under Global Properties -&gt; User Accounts. There's a setting called "Expire Date." Since we use TACACS+, I'm unsure changing this setting will affects the current allowed administrators. Additionally, there are numerous settings like "Password Strength", "Password History"... under the Gaia CLI command "show password-controls..." . changing either of these settings impact our TACACS+ configuration?</P> <P>Thanks</P> Sat, 31 Aug 2024 07:45:28 GMT https://community.checkpoint.com/t5/General-Topics/Configuring-Password-Policy-in-Gaia-Clish/m-p/225225#M37486 Ihenock1011 2024-08-31T07:45:28Z https://community.checkpoint.com/t5/General-Topics/Configuring-Password-Policy-in-Gaia-Clish/m-p/225226#M37487 <P>Hi&nbsp;<a href="https://community.checkpoint.com/t5/user/viewprofilepage/user-id/96626">@Ihenock1011</a>&nbsp;</P> <P>According to the <A href="https://sc1.checkpoint.com/documents/R81.20/WebAdminGuides/EN/CP_R81.20_Gaia_AdminGuide/CP_R81.20_Gaia_AdminGuide.pdf" target="_self">R81.20 admin guide (page 450)</A></P> <P><EM>Note - The password policy does not apply to non-local users that authentication</EM><BR /><EM>servers such as RADIUS manage their login information and passwords. In addition,</EM><BR /><EM>it does not apply to non-password authentication, such as the public key</EM><BR /><EM>authentication supported by SSH</EM></P> <P>BR</P> <P>Akos</P> Sat, 31 Aug 2024 08:12:14 GMT https://community.checkpoint.com/t5/General-Topics/Configuring-Password-Policy-in-Gaia-Clish/m-p/225226#M37487 AkosBakos 2024-08-31T08:12:14Z