The following security practices are recommended to support compliance with the Payment Card Industry Data Security Standard (PCI-DSS) standards.
Do not use commonly attacked usernames like "admin" or "root."
The Admin account is active by default: To remove this account, you must create a new username and password and then log out of the router. Log back in with the new username and password. You will then have the ability to delete the admin account.
Do use complex passwords that contain a combination of uppercase and lowercase letters, numbers, and special characters. Passwords must contain a minimum of seven characters.
Examples of passwords that you should never use:
"Password"
"12345678"
Your name, or any reordered combination of your name.
Single, commonly used words like "monkey", "baseball", or "football". Commonly used words can be exploited by brute force attacks.
Avoid writing down your complex passwords. Use password phrases that you can easily remember.
Complex password example: 9Hy#b!3nUvL
This password is strong but is typically written down somewhere, which should be avoided at all cost.
Passphrase example: HowCould13DucksKnow?
Using a combination of words creates an easy-to-remember phrase that is very difficult to crack due to the complexity and length.
Change your password every three months.
Note
Ericsson Cradlepoint routers require their RADIUS or TACACS+ server to provide users managing the router full administrative rights. All other privileges will fail to allow authentications to the router.