A user must have an admin account to log in to the TOE. Each admin account belongs to an admin group, which contains roles and permissions that determine the tasks a user can perform.
The TOE provides a default superuser admin group, called admin-group, with one superuser administrator, admin. The default superuser admin can log in to the TOE, using the default user name admin and password infoblox. Superuser admins are the security admins and have full access and control of all the operations of a TOE. Note that you must change the default user name and password of the default superuser admin to prevent unauthorized access to the TOE. For more information about the tasks that superusers and limited-access admins can perform, see Guidance Documentation Supplement for Common Criteria on page 1879.
Setting Password Restrictions for Local Admins
All admins are required to enter a username and password when they log in to Grid Manager or the CLI. A superuser can set minimum password length through Grid Manager. To set minimum password length, from the Grid tab -> Grid Properties -> Edit. In the Grid Properties editor, select the Password tab and specify the minimum number of characters that are required in a password. Note that the minimum password length must be between 4 and 64 characters. You can specify character types, such as lowercase or uppercase characters, that are allowed in the password and the number of required character changes from the previous password, whether passwords expire and their duration. For information about defining the password policy, see Managing Passwords on page 211. TOE locks the user after five consecutive failed logins from the same IP address within a minute.