Password Control Configuration 341
Password Control
Configuration
Configuration
Prerequisites
A user PC is connected to the Switch 4500 to be configured; both devices are
operating normally.
Configuration Tasks The following sections describe the configuration tasks for password control:
â– Configuring Password Aging
â– Configuring the Minimum Password Length
â– Configuring History Password Recording
â– Configuring User Login Password in Encryption Mode
â– Configuring Login Attempts Limitation and Failure Procession Mode
â– Configuring the Timeout for User Password Authentication
After the above configuration, you can execute the display password-control
command in any view to check the information about the global password control
for all users, including the enable/disable state of password aging, the aging time,
the enable/disable state of the shortest-password limitation, the configured
User blacklist If the maximum attempt times is
exceeded, the user cannot log in the
switch and is added to the blacklist
by the switch. All users in the
blacklist are not allowed to log in
the switch.
For the user inhibited from login for
a certain time period, the switch will
remove the user from the blacklist
when the time period is used out.
For the user inhibited from login
forever, the switch provides a
command which allows the
administrator to manually remove
the user from the blacklist.
The blacklist is saved in the RAM of
the switch, so it will be lost when
the switch reboots.
System logging The switch automatically logs the
following events:
â– Successful user login: The switch
logs the user name, user IP
address, and VTY ID.
â– Inhibition of a user due to ACL
rule: The switch logs the user IP
address.
â– User authentication failure. The
switch logs the user name, user
IP address, VTY ID, and failure
reason.
No configuration is needed for
this function
Table 368 Functions Provided by Password Control
Function Description Application
To Next Page
Loading...
Need help?
General