Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. NetBackup and NetBackup Appliances Hardening Guide
  3. Steps to protect NetBackup Flex Scale
  4. Changing the password policy
NetBackup and NetBackup Appliances Hardening Guide

Changing the password policy

You can customize the password policies by setting rules for the passwords that are used by the NetBackup Flex Scale local users. You can set rules for password complexity, password age, and password lockout. Password complexity specifies the number and type of characters a password must include. Password age defines the duration for which the password is valid. Password lockout specifies the number of failed attempts because of incorrect usage of passwords after which a user is prevented from logging in to the account.

The default password policy for a local user is as follows:

Password complexity:

  • Minimum characters: 8

  • Minimum numbers: 1

  • Minimum lowercase characters: 1

  • Minimum uppercase characters: 1

  • Minimum special characters: 1

Note:

Ensure that you change the password policy from the NetBackup Flex Scale infrastructure management UI or the NetBackup Flex Scale web UI. If you change the password policy in the NetBackup UI, the changes are not reflected in NetBackup Flex Scale.

To edit the password policy:

  1. Use any one of the following options to log in using the user account that you created:
    • Use a user account with both Appliance Administrator and NetBackup Administrator role, or a user account with only an Appliance administrator role to log in to the NetBackup Flex Scale web interface https://ManagementServerIPorFQDN/webui where ManagementServerIPorFQDN is the public IP address, the FQDN, or the short host name that you specified for the NetBackup Flex Scale management server and API gateway during the cluster configuration, and then in the left pane click Cluster Management > Cluster settings > User management.

    • Use a user account with an Appliance Administrator role to log in to the NetBackup Flex Scale infrastructure management console https://ManagementServerIPorFQDN:14161 where ManagementServerIPorFQDN is the public IP address, the FQDN, or the short host name that you specified for the NetBackup Flex Scale management server and API gateway during the cluster configuration, and then in the left pane click Settings > User management.

      Note:

      If you access the NetBackup Flex Scale infrastructure management console by using the short host name from a node, set the DNS settings (name server, domain name, and search domain) or ensure that the entry for mapping the short host name to an IP address exists in the hosts file of the node.

  2. Click Manage password policy.
  3. On the Manage password policy page, click Edit.
  4. If you want your password policy to comply with STIG, select Reset to STIG default values to fill in the default values for all the parameters.
  5. Edit the parameters as required. To ignore a rule, leave the corresponding parameter blank. After making the changes click Save.

Table:

Parameter

Description

Minimum characters

Minimum number of characters to include in a password

Minimum uppercase characters

Minimum number of uppercase characters to include in a password

Maximum repetitive characters of the same class

Maximum number of consecutive uppercase, lowercase, numeric, and special characters

Minimum numbers

Minimum number of numeric characters

Minimum special characters

Minimum number of special characters in a password

Minimum character classes

Minimum character classes to include in a password. Character classes include uppercase, lowercase, numeric, and special characters.

Minimum lowercase characters

Minimum number of lowercase characters

Maximum repetitive characters

Maximum number of characters that can be repeated in a password.

Character difference with old password

Number of characters the new password must differ by from the previous password

Days after which password can be changed

Number of days after which a password can be changed

Days after which password must be changed

Number of days after which a password must be changed

Days before warning message

Number of days before the password expires to display a warning

Minimum different passwords before allowing reuse

Number of unique passwords before a previous password can be reused

Number of incorrect login attempts before lockout

Number of failed login attempts after which the account gets locked

Time before locked account is reenabled

Duration in seconds the account remains locked

Time between login failures before account lockout

Number of seconds between consecutive failed login attempts

Feedback

Was this page helpful?
Previous

Managing the login banner

Next

Support for immutability in NetBackup Flex Scale

Feedback

Was this page helpful?