This section outlines the configuration of a local password policy for user accounts on LoadMaster.

The Bal user is the default administrative user. The bal user should exist locally. Follow standard safekeeping practices for treating the bal user as an emergency account.

By default, there are no other local users. Local user accounts should be created for day-to-day operations.

Use the following industry-standard guidelines to construct secure passwords for logins, which are based on the advice found in the Cybersecurity and Information Security Agency’s (CISA's) strong password guidelines.

  • Longer passwords are stronger; use 16 characters or more.
  • Use random strings of mixed-case letters, numbers and symbols.
  • Use a memorable phrase of 5 - 7 unrelated words; longer words result in a stronger password.
  • Use creative spelling, numbers, and symbols.
  • Use a different strong password for every account.

Some examples of strong passwords from the CISA document:

  • cXmnZK65rf*&DaaD

  • Yuc8$RikA34%ZoPPao98t

  • Strong: HorsePurpleHatRunBaconShoes

  • Stronger: HorsPerpleHatRunBayconShoos

  • Strongest: HorsPerpleHat#1RunBayconShoos

We recommend that any password is secure and in line with any organizational requirements.

Follow the steps below to set a password for the bal user:

  1. In the main menu of the LoadMaster UI, go to System Configuration > System Administration > User Management.

  2. Enter the Current Password for the bal user.

  3. Enter a new complex password.

  4. Re-enter the new complex password.

  5. Click Set Password.

Note: The bal user password is initially configured on first installation of the LoadMaster. You can subsequently change and update it.

Local user accounts are also configured under System Configuration > System Administration > User Management.

Note: If the unit will be placed in High Availability (HA) mode, you should set the bal user password identically on both devices in the HA pair to prevent lockouts after fail over.