Skip to main content

Enable or disable required password complexity for local SMB users

Contributors netapp-ahibbard netapp-thomi netapp-aherbin
PDFs

Required password complexity provides enhanced security for local SMB users on your storage virtual machines (SVMs). The required password complexity feature is enabled by default. You can disable it and reenable it at any time.

Before you begin

Local users, local groups, and local user authentication must be enabled on the CIFS server.

Note
About this task

You must not use the vserver cifs security modify command for a CIFS server in workgroup mode because some of the options are not valid.
Steps

  1. Perform one of the following actions:

    If you want required password complexity for local SMB users to be…​ Enter the command…​

    Enabled

    vserver cifs security modify -vserver vserver_name -is-password-complexity-required true

    Disabled

    vserver cifs security modify -vserver vserver_name -is-password-complexity-required false

  2. Verify the security setting for required password complexity: vserver cifs security show -vserver vserver_name

Example

The following example shows that required password complexity is enabled for local SMB users for SVM vs1:

cluster1::> vserver cifs security modify -vserver vs1 -is-password-complexity-required true

cluster1::> vserver cifs security show -vserver vs1 -fields is-password-complexity-required
vserver is-password-complexity-required
------- -------------------------------
vs1     true
Related information

Displaying information about CIFS server security settings

Using local users and groups for authentication and authorization

Requirements for local user passwords

Changing local user account passwords