H3C Technologies H3C SecPath F1000-E User Manual
Page 177
167
Step Command
Remarks
8.
Configure the password
control attributes for the
local user.
•
Set the password aging time:
password-control aging
aging-time
•
Set the minimum password
length:
password-control length
length
•
Configure the password
composition policy:
password-control composition
type-number type-number
[ type-length type-length ]
Optional.
By default, the password control
attributes of the user group to which
the local user belongs apply, and any
password control attribute that is not
configured in the user group uses the
global setting. The global settings
include a 90-day password aging
time, a minimum password length of
10 characters, and at least one
password composition type and at
least one character required for each
password composition type.
The minimum password length is 8
characters.
In FIPS mode, the value of the
type-number argument must be 4.
9.
Configure the binding
attributes for the local user.
bind-attribute call-number
call-number [ : subcall-number ]
Optional.
By default, no binding attribute is
configured for a local user.
This command applies only to PPP
users.
10.
Configure the authorization
attributes for the local user.
authorization-attribute { acl
acl-number | callback-number
callback-number | idle-cut minute
| level level | user-profile
profile-name | user-role { guest |
guest-manager | security-audit }
| vlan vlan-id | work-directory
directory-name } *
Optional.
By default, no authorization attribute
is configured for a local user.
For PPP users, only acl,
callback-number, idle-cut, and
user-profile are supported.
For portal users, only acl, idle-cut,
user-profile, and vlan are supported.
For SSH, terminal, and Web users,
only level is supported.
For FTP users, only level and
work-directory are supported.
For Telnet users, only level and
user-role is supported.
For other types of local users, no
binding attribute is supported.
11.
Set the validity time of the
local user.
validity-date time
Optional.
Not set by default.
12.
Set the expiration time of the
local user.
expiration-date time
Optional.
Not set by default.
13.
Assign the local user to a
user group.
group group-name
Optional.
By default, a local user belongs to the
default user group system.
- H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS