configure account password-policy
lockout-on-login-failures
configure account [all | <name>] password-policy lockout-on-login-failures
[on | off]
Description
Disables an account after the user has 3 consecutive failed login attempts.
Syntax Description
all
Specifies all users (and future users).
name
Specifies an account name.
on
Specifies an account name.
off
Resets the password to never lockout the user.
Default
N/A
Usage Guidelines
This command applies to sessions at the console port of the switch as well as all other sessions and to
user-level and administrator-level accounts. This command locks out the user after three consecutive
failed login attempts; the user's account must be specifically re-enabled by an administrator.
Using the
off
is the system default. The system default is that three failed consecutive login attempts terminate the
particular session, but the user may launch another session; there is no lockout feature by default.
NOTE
The default admin account and failsafe accounts are never locked out, no matter how many consecutive
failed login attempts.
Example
The following command enables the account finance for lockout. After three consecutive failed login
attempts, the account is subsequently locked out:
configure account finance password-policy lockout-on-login-failures on
History
This command was first available in ExtremeWare 7.4.
Platform Availability
This command is available on all platforms.
ExtremeWare 7.5 Command Reference Guide
option resets the account to allow innumerable consecutive failed login attempts, which
configure account password-policy lockout-on-login-failures
77