Displaying And Maintaining Password Control; Password Control Configuration Example; Network Requirements - HPE FlexNetwork 10500 Series Security Configuration Manual
Hide thumbs
Also See for FlexNetwork 10500 Series:
- Security command reference (881 pages) ,
- Network management and monitoring command reference (423 pages) ,
- Configuration manual (407 pages)
Table of Contents
Advertisement
Displaying and maintaining password control
Execute display commands in any view and reset commands in user view.
Task
Display password control configuration.
Display information about users in the
password control blacklist.
Delete users from the password control
blacklist.
Clear history password records.
NOTE:
The reset password-control history-record command can delete the history password records of
one or all users even when the password history feature is disabled.
Password control configuration example
Network requirements
Configure a global password control policy to meet the following requirements:
•
A password must contain a minimum of 16 characters.
•
A password must contain a minimum of four character types and a minimum of four characters
for each type.
•
An FTP or VTY user failing to provide the correct password in two successive login attempts is
permanently prohibited from logging in.
•
A user can log in five times within 60 days after the password expires.
•
A password expires after 30 days.
•
The minimum password update interval is 36 hours.
•
The maximum account idle time is 30 days.
•
A password cannot contain the username or the reverse of the username.
•
No character appears consecutively three or more times in a password.
Configure a super password control policy for user role network-operator to meet the following
requirements:
•
A super password must contain a minimum of 24 characters.
•
A super password must contain a minimum of four character types and a minimum of five
characters for each type.
Configure a password control policy for local Telnet user test to meet the following requirements:
•
The password must contain a minimum of 24 characters.
•
The password must contain a minimum of four character types and a minimum of five
characters for each type.
•
The password for the local user expires after 20 days.
Command
display password-control [ super ]
display password-control blacklist [ user-name
user-name | ip ipv4-address | ipv6 ipv6-address ]
reset password-control blacklist [ user-name
user-name ]
reset password-control history-record [ user-name
user-name | super [ role role name ] ]
273
Advertisement
Table of Contents
Troubleshooting
