Setting Global Password Control Parameters - HP FlexFabric 5930 Series Security Configuration Manual

Hide thumbs Also See for FlexFabric 5930 Series:

Configuration manuals (467 pages)

Command reference manual (87 pages)

Installation manual (73 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

Table of Contents

Setting global password control parameters

The password expiration time, minimum password length, and password composition policy can be

configured in system view, user group view, or local user view. The password settings with a smaller

application scope have higher priority. Global settings in system view apply to the passwords of the local

users in all user groups if you do not configure password policies for these users in both local user view

and user group view.

The password-control login-attempt command takes effect immediately and can affect the users already

in the password control blacklist. Other password control configurations do not take effect on users that

have been logged in or passwords that have been configured.

To set global password control parameters:

Step

Enter system view.

Set the password expiration

time.

Set the minimum password

update interval.

Set the minimum password

length.

Configure the password

composition policy.

Configure the password

complexity checking policy.

Set the maximum number of

history password records for

each user.

Specify the maximum number

of login attempts and the

action to be taken when a

user fails to log in after the

specified number of attempts.

Set the number of days during

which a user is notified of the

pending password expiration.

10.

Set the maximum number of

days and maximum number

of times that a user can log in

after the password expires.

11.

Set the maximum account idle

time.

Command

system-view

password-control aging aging-time

password-control update interval

interval

password-control length length

password-control composition

type-number type-number

[ type-length type-length ]

password-control complexity

{ same-character | user-name }

check

password-control history

max-record-num

password-control login-attempt

lock-time time | unlock } ]

password-control

alert-before-expire alert-time

password-control

expired-user-login delay delay

times times

password-control login idle-time

idle-time

Remarks

N/A

The default setting is 90 days.

The default setting is 24 hours.

The default setting is 10

characters.

By default, a password must

contain at least one character type

and at least one character for each

type.

By default, the system does not

perform password complexity

checking.

The default setting is 4.

By default, the maximum number

of login attempts is 3 and a user

failing to log in after the specified

number of attempts must wait for 1

minute before trying again.

The default setting is 7 days.

By default, a user can log in three

times within 30 days after the

password expires.

The default setting is 90 days.

Table of Contents

Setting Global Password Control Parameters - HP FlexFabric 5930 Series Security Configuration Manual

Setting global password control parameters

Troubleshooting

Related Manuals for HP FlexFabric 5930 Series

Related Content for HP FlexFabric 5930 Series

Table of Contents