Users Guide

Table Of Contents
NOTE: For information on recommended characters for user names and passwords, see Recommended characters in user
names and passwords on page 144.
Changing the default login password using iDRAC settings utility
To change the default login password using iDRAC settings utility:
1. In the iDRAC Settings utility, go to User Configuration.
The iDRAC Settings User Configuration page is displayed.
2. In the Change Password field, enter the new password.
NOTE: For information on recommended characters for user names and passwords, see Recommended characters in
user names and passwords on page 144.
3. Click Back, click Finish, and then click Yes.
The details are saved.
Enabling or disabling default password warning
message
You can enable or disable the display of the default password warning message. To do this, you must have Configure Users
privilege.
Password Strength Policy
Using iDRAC interface, you can check the password strength policy and check any errors if the policy is not met. The password
policy cannot be applied to previously saved passwords, Server Configuration Profiles (SCP) copied from other servers, and
embedded passwords in the profile.
To access Password settings, go to iDRAC Settings > Users > Password Settings.
Following fields are available in this section:
Minimum Score Specifies the minimum password strength policy score. The values in this field are:
0 No protection
1 Weak protection
2 Medium protection
3 Strong protection
Simple Policy Specifies the required characters in a secure password. It has the following options:
Upper Case Letters
Numbers
Symbols
Minimum Length
Regular Expression The Regular expression along with the Minimum score is used for password enforcement. The
values are 1-4.
IP Blocking
You can use IP blocking to dynamically determine when excessive login failures occur from an IP address and block or prevent
the IP address from logging into the iDRAC9 for a preselected time span. IP blocking includes:
The number of allowable login failures.
The timeframe in seconds when these failures must occur.
The amount of time, in seconds, when the IP address is prevented from establishing a session after the total allowable
number of failures is exceeded.
44
Logging in to iDRAC