Juniper Networks J-Series User Manual

Table 21: Configuring Password Retry Limits for Telnet and SSH Access

CLI Configuration Editor

J-Web Configuration Editor

Task

From the

[edit]

hierarchy

level, enter

edit system login

retry-options

1.

In the J-Web interface, select
Configuration>View and
Edit>Edit Configuration.

2.

Next to System, click Edit.

3.

Next to Login, click Configure
or Edit.

4.

Next to Retry options, click
Configure or Edit.

Navigate to the Retry options level in the configuration
hierarchy.

1.

Enter

set

tries-before-disconnect

4

2.

Enter

set backoff-threshold

2

3.

Enter

set backoff-factor 5

4.

Enter

set minimum-time 40

1.

In the Tries before disconnect
box, type

4

.

2.

In the Backoff threshold box,
type

2

.

3.

In the Backoff factor box, type

5

.

4.

In the Minimum time box, type

40

.

5.

Click OK.

Configure password retry limits for Telnet and SSH access.

■

Tries—Maximum number of consecutive password
retries before a SSH or Telnet sessions is disconnected.
The default number is

10

, but you can set a number

between

1

and

10

.

■

Backoff threshold—Threshold number of password
retries after which a delay is introduced between two
consecutive password retries. The default number is

2

, but you can set a number between

1

and

3

.

■

Backoff factor—Delay (in seconds) between
consecutive password retries after the threshold
number of password retries. The default delay is in
multiples of

5

seconds, but you can set a delay

between

5

and

10

seconds.

■

Minimum time—Minimum length of time (in seconds)
during which a Telnet or SSH session cannot be
disconnected. The default is

20

seconds, but you can

set a time between

20

and

60

seconds.

Configuring Password Retry Limits for Telnet and SSH Access

■

27

Chapter 1: Managing User Authentication and Access