Safeguard Administrator's Manual (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

Controlling User Access

Safeguard Administrator’s Manual—523317-029

2-2

TERMINAL Commands

•

Initial directory, initial program, and initial program type for the user in an HP

NonStop Open Systems Services (OSS) environment (INITIAL-DIRECTORY,

INITIAL-PROGRAM, and INITIAL-PROGTYPE attributes)

•

Automatic starting of a command interpreter for a user after logon at a terminal

controlled by the Safeguard software (CI-PROG attribute)

TERMINAL Commands

The TERMINAL commands, which are described in Section 7, Securing Terminals,

allow you to add terminal definitions to the Safeguard database. The TERMINAL

commands control this aspect of user authentication:

•

Automatic starting of a command interpreter for a user after logon (PROG attribute)

ALTER SAFEGUARD Command

You use the ALTER SAFEGUARD command, described in Section 9, Configuration, to

set the Safeguard configuration attributes. Many configuration attributes provide

security controls for users on a systemwide basis. For example, you can set the

minimum password length or limit the number of failed logon attempts. Other

configuration attributes become the default value for attributes not specified in a

particular user authentication record. For example, you can configure the Safeguard

software so that all attempts to log on are audited even if auditing is not specified in

individual user authentication records.

With the Safeguard configuration attributes, you specify these user access and

authentication controls:

•

Password algorithm (PASSWORD-ALGORITHM) (only on systems running G06.29

and later G-series RVUs and H06.06 and later H-series RVUs)

•

Minimum password length for all users (PASSWORD-MINIMUM-LENGTH)

•

Maximum password length for all users (PASSWORD-MAXIMUM-LENGTH) (only

on systems running G06.31 and later G-series RVUs and H06.08 and later

H-series RVUs)

•

Password compatibility mode specifies that only first eight characters of the

password will be considered during password change.

(PASSWORD-COMPATIBILITY-MODE) (only on systems running G06.31 and later

G-series RVUs and H06.08 and later H-series RVUs)

•

Password history, to prevent reuse of passwords (PASSWORD-HISTORY)

•

Password encryption (PASSWORD-ENCRYPT)

•

Time period prior to expiration during which a password can be changed

(PASSWORD-MAY-CHANGE)

•

Password uppercase required, specifies whether a user password will be enforced

to have at least one uppercase character