Setting a local user password in interactive mode, Displaying and maintaining password control, Password control configuration example – H3C Technologies H3C SecBlade LB Cards User Manual

96

Setting a local user password in interactive mode

You can set a password for a local user in interactive mode. When doing so, you need to confirm the
password.
To set a password for a local user in interactive mode:

Step Command

1.

Enter system view.

system-view

2.

Create a local user and enter local user view.

local-user user-name

3.

Set the password for the local user in interactive mode.

password

Displaying and maintaining password control

Task Command

Remarks

Display password control
configuration information.

display password-control [ super ]
[ | { begin | exclude | include }

regular-expression ]

Available in any view.

Display information about users in
the password control blacklist.

display password-control blacklist
[ user-name name | ip

ipv4-address | ipv6 ipv6-address ]
[ | { begin | exclude | include }

regular-expression ]

Available in any view.

Delete users from the password
control blacklist.

reset password-control blacklist
[ user-name name ]

Available in user view.

Clear history password records.

reset password-control

history-record [ user-name name |
super [ level level ] ]

Available in user view.
This command can delete the
history password records of one or

all users even when the password

history function is disabled.

Password control configuration example

Network requirements

Implement the following global password control policy:

•

An FTP or VTY user failing to provide the correct password in two successive login attempts is
permanently prohibited from logging in.

•

A user can log in five times within 60 days after the password expires.

•

The password aging time is 30 days.

•

The minimum password update interval is 36 hours.

•

The maximum account idle time is 30 days.

•

A password cannot contain the username or the reverse of the username.