AAA Commands
user lockout-threshold
Configures the number of failed password login attempts allowed during a certain period of time (observa-
tion window). If the number of failed attempts exceeds the lockout threshold number before the observa-
tion window period expires, the user account is locked out.
user lockout-threshold number
Syntax Definitions
number
Defaults
parameter
number
Platforms Supported
OmniSwitch 6400, 6850,6850E, 6855, 9000E
Usage Guidelines
•
This command is only available to the admin user because the admin user account is the only account
protected from any type of lockout attempt.
•
If the lockout threshold is set to zero (the default), there is no limit to the number of failed login
attempts allowed.
•
A user account remains locked out for the length of the lockout duration time period; at the end of this
time, the account is automatically unlocked.
•
If the lockout duration time period is set to zero, only the admin user or a user with read/write AAA
privileges can unlock a locked user account. An account is unlocked by changing the user account
password or with the
•
The lockout threshold time period is a global lockout setting that is applied to all passwords config-
ured on the switch.
•
Lockout settings are saved automatically; that is, these settings do not require the
configuration snapshot
Examples
-> user lockout-threshold 3
-> user lockout-threshold 0
Release History
Release 6.3.1; command was introduced.
OmniSwitch CLI Reference Guide
The number of failed login attempts allowed. The range is 0 to 999.
default
0
user lockout unlock
command.
command to save user settings over a reboot.
June 2012
write memory
or
page 36-67