209
Parameters
user-name name: Specifies a user by its name, a case-sensitive string of 1 to 55 characters.
ip ipv4-address: Specifies the IPv4 address of a user.
ipv6 ipv6-address: Specifies the IPv6 address of a user.
Usage guidelines
If you do not specify any arguments, this command displays information about all users in the password
control blacklist.
If an FTP or virtual terminal line (VTY) user fails authentication, the system adds the user to a password
control blacklist. You can use this command to view information about these users in the blacklist.
Users accessing the system through the console or AUX interface are not blacklisted. This is because the
system is unable to obtain the IP addresses of these users and these users are privileged and, therefore,
relatively secure to the system.
Examples
# Display password control blacklist information.
<Sysname> display password-control blacklist
Blacklist items matched: 2.
Username: test
IP: 192.168.44.1 Login failures: 1 Lock flag: unlock
Username: jj
IP: 192.168.44.3 Login failures: 3 Lock flag: lock
Table 24 Command output
Field Descri
tion
Blacklist items matched Number of blacklisted users.
IP
IP address of the user.
Login failed times
Number of login failures.
Lock flag
Whether the user account is locked for the user:
• unlock—Not limited.
• lock—Disabled temporarily or permanently, depending on the
password-control login-attempt command.
password-control { aging | composition | history | length }
enable
Use password-control { aging | composition | history | length } enable to enable the password
expiration, composition restriction, history, or minimum length restriction function.
Use undo password-control { aging | composition | history | length } enable to disable a password
control function.
Syntax
password-control { aging | composition | history | length } enable
undo password-control { aging | composition | history | length } enable
To Next Page
Loading...
Need help?
General
