Manualshelf

Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)

ManualsBrandsHP ManualsStorageHP StorageWorks 4/32B SAN Switch Power Pack
421422423424425426427428429430
396 Fabric OS Command Reference Manual
53-1000436-01
passwdCfg
2
-history value
Specifies the number of past password values that are disallowed when
setting a new password. A value of 1 to 24 can be specified. The default value
is 1.
-minpasswordage value
Specifies the minimum number of days that must elapse before a password
can be changed. -minpasswordage can be set at 0 to 999. The default value
is 0. Setting this parameter to a nonzero value discourages a user from
rapidly changing a password in order to defeat the password history setting to
reuse a recently used password. The minpasswordage policy is not enforced
when an administrator changes the password for another user.
When -maxpasswordage is set to a nonzero value, -minpasswordage must be
set to a value less than or equal to -maxpasswordage.
-maxpasswordage value
Specifies the maximum number of days that can elapse before a password
must be changed. This is the password expiration period.
-maxpasswordage can be set at 0 to 999. Setting this parameter to 0
disables password expiration. The default value is 0.
-warning value
Specifies the number of days prior to password expiration that a warning of
password expiration is displayed. -warning can be set at 0 to 999. The default
value to 0.
-lockoutthreshold value
Specifies the number of times a user can specify an incorrect password
during login before the account is locked. The number of failed login attempts
is counted from the last successful login. -lockoutthreshold can be set at 0 to
999. Setting this parameter to 0 disables the lockout mechanism. The default
value is 0.
-lockoutduration value
Specifies the time, in minutes, after which a previously locked account
automatically unlocks. The -lockoutduration time elapses from the first time
the failed login attempts exceeds the -lockoutthreshold. Subsequent failed
login attempts during a lockout period do not further extend the lockout
period. -lockoutduration can be set at 0 to 99999. Setting this parameter to 0
disables the lockout duration mechanism, requiring an administrative action
to unlock the account. The default value is 30. Note that the -lockoutduration
is not in effect when the -lockoutthreshold is zero.
--enableadminlockout
Enables the admin lockout policy and sets the config parameter
"passwdcfg.adminlockout" to 1. If the parameter
"passwdcfg.lockoutthreshold" is set to greater than 0 and adminlockout
policy is enabled then if the number of failed login attempts from the last
successful login equals the "passwdcfg.lockoutthreshold", the account gets
locked for the "passwdcfg.lockoutduration" duration. The particular account
is unlocked manually using userconfig --change <account name> -u by
root/factory/security admin/admin users or it will automatically get unlocked
after "passwdcfg.lockoutduration" duration.