Passwdcfg - Brocade Communications Systems Brocade 8/12c Command Reference Manual
Brocade fabric os command reference manual supporting fabric os v7.0.0 (april 2011)
Hide thumbs
Also See for Brocade 8/12c:
- User manual (1301 pages) ,
- Command reference manual (1080 pages) ,
- Reference (362 pages)
Table of Contents
Advertisement
22
passwdCfg
passwdCfg
Manages the password policies.
SYNOPSIS
passwdcfg --set options value
passwdcfg --disableadminlockout
passwdcfg --enableadminlockout
passwdcfg --setdefault
passwdcfg --showall
passwdcfg --help
DESCRIPTION
Use this command to manage password policies.
Use --set to configure the following password policies:
•
•
•
•
Password Strength Policy
The password strength policy enforces a set of rules that new passwords must satisfy. Configurable rules
include lowercase and uppercase characters, numbers, punctuation occurrences and minimum length
values. It is enforced only when a new password is defined. The password strength policy is enforced
cross all user accounts. When a password fails more than one of the strength attributes, an error is
reported for only one of the attributes at a time.
Password History Policy
The password history policy prevents reuse of a recently used password. The password history policy is
enforced across all user accounts when users are setting their own password. It is not enforced when an
administrator sets a password for another user, but the user's password history is preserved and the
password set by the administrator is recorded in the user's password history.
Password Expiration Policy
The password expiration policy forces expiration of a password after a specified period of time. When a
user's password expires, the user must change the password to complete the authentication process. A
warning that password expiration is approaching is displayed when the user logs in. The number of days
prior to password expiration during which warnings commence is a configurable parameter. Password
expiration does not disable or lock out the account. The password expiration policy is enforced across all
user accounts except the root and factory accounts.
Account Lockout Policy
The account lockout policy disables a user account when the user exceeds a configurable number of
failed login attempts. The mechanism can be configured to keep the account locked until explicit
administrative action is taken to unlock the account or locked accounts can be automatically unlocked
after a specified period. An administrator can unlock a locked account at any time. Note that the account
locked state is distinct from the account disabled state. The account lockout policy is enforced across all
user accounts except the root, factory, and SecurityAdmin role accounts. A separate configuration option,
available to the SecurityAdmin and Admin role accounts, may be used to enable and disable applications
of the account lockout policy to Admin role accounts.
548
Password strength policy
Password history policy
Password expiration policy
Account lockout policy
Fabric OS Command Reference
53-1001764-01
Advertisement
Chapters
Table of Contents
