Novell LINUX ENTERPRISE SERVER 11 - SECURITY Manual page 62

4 Configure the password aging policies:
5 Configure the lockout policies:
6 Apply your password policy settings with OK.
48 Security Guide
3a Determine the number of passwords stored in the password history. Saved
passwords may not be reused by the user.
3b Determine whether users can change their password and whether they need
to change their password after a reset by the administrator. Optionally require
the old password for password changes.
3c Determine whether and to what extent passwords should be subject to qual-
ity checking. Set a minimum password length that must be met before a
password is valid. If you select Accept Uncheckable Passwords, users are
allowed to use encrypted passwords although the quality checks cannot be
performed. If you opt for Only Accept Checked Passwords only those pass-
words that pass the quality tests are accepted as valid.
4a Determine the minimum password age (the time that needs to pass between
two valid password changes) and the maximum password age.
4b Determine the time between a password expiration warning and the actual
password expiration.
4c Set the number of postponement uses of an expired password before the
password expires entirely.
5a Enable password locking.
5b Determine the number of bind failures that trigger a password lock.
5c Determine the duration of the password lock.
5d Determine for how long password failures are kept in the cache before they
are purged.