We are using Cisco 2960x Switch and after the Security Auditing Exercise, we are asked to implement Password Policy for Password Strength and Management for common Criteria as shown on the link below.
My question is in order to implement the Password Strength and Management for common Criteria , do we need an External RADIUS TACACS server ?
Also, if we like to implement the following password policy:
1) Minimum Password age
2) Maximum Password Age
3) Password History (i.e. cannot use the password for the last 10 password history
do we need to implement RADIUS or TACACS ?
Thank you for your advice in advance.