HP StorageWorks 4/32 Brocade Fabric OS Command Reference Manual - Supporting F - Page 428
the failed login attempts exceeds the, time elapses from the first time
View all HP StorageWorks 4/32 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 428 highlights
2 passwdCfg -history value Specifies the number of past password values that are disallowed when setting a new password. A value of 1 to 24 can be specified. The default value is 1. -minpasswordage value Specifies the minimum number of days that must elapse before a password can be changed. -minpasswordage can be set at 0 to 999. The default value is 0. Setting this parameter to a nonzero value discourages a user from rapidly changing a password in order to defeat the password history setting to reuse a recently used password. The minpasswordage policy is not enforced when an administrator changes the password for another user. When -maxpasswordage is set to a nonzero value, -minpasswordage must be set to a value less than or equal to -maxpasswordage. -maxpasswordage value Specifies the maximum number of days that can elapse before a password must be changed. This is the password expiration period. -maxpasswordage can be set at 0 to 999. Setting this parameter to 0 disables password expiration. The default value is 0. -warning value Specifies the number of days prior to password expiration that a warning of password expiration is displayed. -warning can be set at 0 to 999. The default value to 0. -lockoutthreshold value Specifies the number of times a user can specify an incorrect password during login before the account is locked. The number of failed login attempts is counted from the last successful login. -lockoutthreshold can be set at 0 to 999. Setting this parameter to 0 disables the lockout mechanism. The default value is 0. -lockoutduration value Specifies the time, in minutes, after which a previously locked account automatically unlocks. The -lockoutduration time elapses from the first time the failed login attempts exceeds the -lockoutthreshold. Subsequent failed login attempts during a lockout period do not further extend the lockout period. -lockoutduration can be set at 0 to 99999. Setting this parameter to 0 disables the lockout duration mechanism, requiring an administrative action to unlock the account. The default value is 30. Note that the -lockoutduration is not in effect when the -lockoutthreshold is zero. --enableadminlockout Enables the admin lockout policy and sets the config parameter "passwdcfg.adminlockout" to 1. If the parameter "passwdcfg.lockoutthreshold" is set to greater than 0 and adminlockout policy is enabled then if the number of failed login attempts from the last successful login equals the "passwdcfg.lockoutthreshold", the account gets locked for the "passwdcfg.lockoutduration" duration. The particular account is unlocked manually using userconfig --change -u by root/factory/security admin/admin users or it will automatically get unlocked after "passwdcfg.lockoutduration" duration. 396 Fabric OS Command Reference Manual 53-1000436-01