Users Guide
Password Policy settings are effective only for the users created or modified after the changes are saved.
Disabling Admin User Accounts
The Admin user account can be disabled in two ways:
l When the Admin user tries to log in with an invalid password for a configured number of times defined by
the Failed attempts count parameter, the Admin user account is locked.
If the mechanism for logging in to W-ClearPass Policy Manager is Certificate + Password, the Admin user is allowed
to enter the password even if the certificate is invalid.
l When the Admin user tries to log in with an invalid user certificate for a configured number of times defined
by the Failed attempts count parameter, the Admin user account is disabled.
l To reset the Failed attempts count and enable a disabled Admin user account, click the Reset button
(see Table 271).
l For Admin users whose accounts are locked due to account settings validations, and whose accounts are
enabled again after being locked out, entries are logged in both the Audit Viewer (see Audit Viewer on page
167) and the Event Viewer (see Event Viewer on page 169).
The Disable Account check occurs every day at midnight.
To specify the conditions for disabling admin user accounts:
1. Navigate to Administration > Users and Privileges > Admin Users.
2. Click the Account Settings link at the top-right corner of the Admin Users page.
The Account Settings page opens.
3. Select the Disable Accounts tab.
The Disable Accounts dialog opens.
Figure 478: Admin Users > Disable Accounts Dialog
4. Specify the Disable Accounts parameters as described in Table 271, then click Save.
Dell Networking W-ClearPass Policy Manager 6.6 | User Guide Administration | 485