Setting user group password control parameters – H3C Technologies H3C SecPath F1000-E User Manual

Page 262

252

Step Command

Remarks

Specify the maximum number
of login attempts and the

action to be taken when a

user fails to log in after the
specified number of attempts.

password-control login-attempt
login-times [ exceed { lock | unlock

| lock-time time | unlock } ]

Optional.
By default, the maximum number

of login attempts is 3 and a user
failing to log in after the specified

number of attempts must wait for

one minute before trying again.

Set the number of days during
which the user is warned of

the pending password

expiration.

password-control
alert-before-expire alert-time

Optional.
7 days by default.

10.

Set the maximum number of
days and maximum number

of times that a user can log in
after the password expires.

password-control

expired-user-login delay delay
times times

Optional.
By default, a user can log in three

times within 30 days after the
password expires.

11.

Set the authentication timeout
time.

password-control
authentication-timeout

authentication-timeout

Optional.
60 seconds by default.

12.

Set the maximum account idle
time.

password-control login idle-time
idle-time

Optional.
90 days by default.

CAUTION:

The specified action to be taken after a user fails to log in for the specified number of attempts takes effect
immediately, and can thus affect the users already in the blacklist. Other password control configurations

take effect only for users logging in later and passwords configured later.

Setting user group password control parameters

Step Command

Remarks

Enter system view.

system-view

N/A

Create a user group and enter
user group view.

user-group group-name

N/A

Configure the password
aging time for the user group. password-control aging aging-time

Optional.
By default, the password aging
time configured in system view is

used.

Configure the minimum

password length for the user
group.

password-control length length

Optional.
By default, the minimum password

length configured in system view is
used.
A password must contain at least
eight characters.

This manual is related to the following products:

H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS