Configuring Password Aging - 3Com 400 Family Configuration Manual

Hide thumbs

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

243

244

245

246

247

248

249

250

251

252

253

254

255

256

257

258

259

260

261

262

263

264

265

266

267

268

269

270

271

272

273

274

275

276

277

278

279

280

281

282

283

284

285

286

287

288

289

290

291

292

293

294

295

296

297

298

299

300

301

302

303

304

305

306

307

308

309

310

311

312

313

314

315

316

317

318

319

320

321

322

323

324

325

326

327

328

329

330

331

332

333

334

335

336

337

338

339

340

341

342

343

344

Table of Contents

290

13: P

HAPTER

ASSWORD

Configuring Password

Aging

ONTROL

ONFIGURATION

PERATIONS

minimum password length (if available), the enable/disable state of history

password recording, the procession mode for login attempt failures, and the time

when the password history was last cleared.

If all the password attempts of a user fail, the system adds the user to the blacklist.

You can execute the display password-control blacklist command in any view to

check the names and the IP addresses of such users.

Table 336 Configure Password Aging

Operation

Enter system view

Enable password aging

Set an aging time for super

passwords

Enable the system to alert

users to change their

passwords when their

passwords will soon expire,

and specify how many days

ahead of the expiration does

the system alert the users.

To cancel the above configurations, you can use the corresponding undo

commands.

CAUTION: You can configure the password aging parameters when password

aging is not yet enabled, but these parameters will not take effect.

After password aging is enabled, the device will decide whether the user password

ages out when a user logging into the system is undergoing the password

authentication. This has three cases:

The password has not expired and its remaining usable time is greater than the

■

configured alert time. In this case, the user log in successfully.

The password has not expired but its remaining usable time is no more than

■

the configured alert time. In this case, the system alerts the user to the

remaining time (in days) before the password expires and prompt the user to

change the password.

If the user chooses to change the password and change it successfully, the

■

system saves the new password, restarts the password aging procedure,

and at the same time allows the user to log in.

If the user chooses to change the password but fails to do so, or the user

■

chooses not to change the password, the system just allows the user to log

in.

The password has already expired. In this case, the system alerts the user to the

■

expiration, requires the user to change the password, and requires the user to

re-change the password if the user input an inappropriate password or the two

inputs are inconsistent.

Command

system-view

password-control

aging enable

password-control

super aging

aging-time

password-control

alert-before-expire

alert-time

Description

By default, password aging is

enabled.

By default, it is 90 days.

By default, users are alerted

seven days ahead of the

password expiration.

Table of Contents

Configuring Password Aging - 3Com 400 Family Configuration Manual

Troubleshooting

Related Manuals for 3Com 400 Family

Related Content for 3Com 400 Family

Table of Contents