R3303-HP HSR6800 Routers Security Command Reference
350
Default command level
3: Manage level
Parameters
time-out-value: Specifies a timeout timer in minutes, in the range of 1 to 35791.
Usage guidelines
If an SFTP connection is idle when the idle timeout timer expires, the system automatically terminates the
connection. If many SFTP connections are established, you can set a smaller value so that the connection
resources can be promptly released.
Examples
# Set the idle timeout timer for SFTP user connections to 500 minutes.
<Sysname> system-view
[Sysname] sftp server idle-timeout 500
Related commands
display ssh server
ssh server authentication-retries
Use ssh server authentication-retries to set the maximum number of connection authentication attempts
for SSH users.
Use undo ssh server authentication-retries to restore the default.
Syntax
ssh server authentication-retries times
undo ssh server authentication-retries
Default
The maximum number of SSH connection authentication attempts is 3.
Views
System view
Default command level
3: Manage level
Parameters
times: Specifies the maximum number of authentication attempts, in the range of 1 to 5.
Usage guidelines
You can set this limit to prevent malicious hacking of usernames and passwords.
This configuration takes effect only for the users at next login.
Authentication fails if the number of authentication attempts (including both publickey and password
authentication) exceeds the upper limit configured by this command.
If the authentication method is password-publickey, the server first uses publickey authentication, and
then uses password authentication to authenticate SSH users. The process is regarded as one
authentication attempt.