Username:zte
Password:
% Local password error!
Still logged in as "who"
R1#login
Username:zte
Password:
% User is locked
R1#show authen-restriction
Username
zte
4.3.6 Configuring a Password Validity Period
Configuration Description
As shown in
port or Telnet. The user enters configuration mode to create another user. By default, the
password of this account never expires. You can set a validity period (90–360 days) for
this account by running a configuration command, and test whether the validity period is
effective by changing the system time.
Figure 4-6 Configuring a Password Validity Period
Configuration Flow
1. Create a user.
2. Configure an authentication template.
3. Configure an authorization template.
4. Sets a password validity period.
5. Change the system time to test whether the validity period is effective.
Configuration Commands
Run the following commands on the ZXR10 ZSR V2:
R1(config)#system-user
R1(config-system-user)#authentication-template 1
R1(config-system-user-authen-temp)#bind aaa-authentication-template 2001
R1(config-system-user-authen-temp)#exit
R1(config-system-user)#authorization-template 1
R1(config-system-user-author-temp)#bind aaa-authorization-template 2001
SJ-20140504150128-007|2014-05-10 (R1.0)
/*The original login user name is who.*/
userinfo
Failed-time
3
Figure
4-6, a user logs in to the ZXR10 ZSR V2 from a PC through a serial
State
Remain (minute)
locked
4-15
ZTE Proprietary and Confidential
Chapter 4 User Management
1