Configuration Guide User guide

ManualsBrandsBrocade ManualsComputer AccessoriesBigIron RX Series

141

142

143

144

145

146

147

148

149

150

72 BigIron RX Series Configuration Guide

53-1002484-04

Setting up local user accounts

Once the enable strict-password-enforcement command is enabled, you can configure the features

discussed in the following sections:

• “Requiring users to accept the message of the day” on page 72

• “Locking out user accounts after three login attempts” on page 72

• “Retaining password history” on page 72

• “Setting passwords to expire” on page 72

• “Creating an encrypted all-numeric password” on page 73

• “Configuring SSL security for the Web Management Interface” on page 73

Requiring users to accept the message of the day

If a message of the day (MOTD) is configured, a user can be required to press the "Enter" key before

he or she can login. To enable this requirement, enter the command as shown.

BigIron RX(config)# banner motd require-enter-key

Syntax: [no] banner motd require-enter-key

Locking out user accounts after three login attempts

A user has three login attempts. If he or she fails to login after the third attempt, that his or her

account is locked out (disabled). To re-enable the user account, do one of the following:

• Reboot the device to re-enable all disabled users.

• Enable the user account by entering the following command.

BigIron RX(config)# username sandy enable

Syntax: [no] username <name> enable

The <name> variable specifies the user account to be enabled.

Retaining password history

The last 15 passwords used for a user account is retained in the CLI. A user cannot reuse any of

these passwords. This is for security purposes so that users do not use the same passwords

multiple times.

Setting passwords to expire

You can set a user password to expire. Once a password expires, the administrator must assign a

new password to the user.

To set a user password to expire, enter the following.

BigIron RX(config)# enable strict-password-enforcement

BigIron RX(config)# username sandy expires 20

Syntax: [no] username <name> expires <days>

The <name> variable specifies the user that the expiration time is applied to.

The <days> variable specifies the number of days before the password expires. Enter 1 – 365 days.

The default is 90 days.