If a message of the day (MOTD) is configured, a user can be required to press the "Enter" key before
he or she can login. To enable this requirement, enter the command as shown.

BigIron RX(config)# banner motd require-enter-key

Syntax: [no] banner motd require-enter-key

Locking out user accounts after three login attempts

A user has three login attempts. If he or she fails to login after the third attempt, that his or her
account is locked out (disabled). To re-enable the user account, do one of the following:

•

Reboot the device to re-enable all disabled users.

•

Enable the user account by entering the following command.

BigIron RX(config)# username sandy enable

Syntax: [no] username <name> enable

The <name> variable specifies the user account to be enabled.

Retaining password history

The last 15 passwords used for a user account is retained in the CLI. A user cannot reuse any of
these passwords. This is for security purposes so that users do not use the same passwords
multiple times.

Setting passwords to expire

You can set a user password to expire. Once a password expires, the administrator must assign a
new password to the user.

To set a user password to expire, enter the following.

BigIron RX(config)# enable strict-password-enforcement

BigIron RX(config)# username sandy expires 20

Syntax: [no] username <name> expires <days>

The <name> variable specifies the user that the expiration time is applied to.

The <days> variable specifies the number of days before the password expires. Enter 1 – 365 days.
The default is 90 days.