BigIron RX Series Configuration Guide 79
53-1002253-01
Setting up local user accounts
4
Enter a password such as TesT12$! that contains the required character combination.
Once the enable strict-password-enforcement command is enabled, you can configure the features
discussed in the following sections:
• “Requiring users to accept the message of the day” on page 79
• “Locking out user accounts after three login attempts” on page 79
• “Retaining password history” on page 79
• “Setting passwords to expire” on page 79
• “Creating an encrypted all-numeric password” on page 80
• “Granting access by time of day” on page 80
Requiring users to accept the message of the day
If a message of the day (MOTD) is configured, a user can be required to press the "Enter" key before
he or she can login. To enable this requirement, enter the command as shown.
BigIron RX(config)# banner motd require-enter-key
Syntax: [no] banner motd require-enter-key
Locking out user accounts after three login attempts
A user has three login attempts. If he or she fails to login after the third attempt, that his or her
account is locked out (disabled). To re-enable the user account, do one of the following:
• Reboot the device to re-enable all disabled users.
• Enable the user account by entering the following command.
BigIron RX(config)# username sandy enable
Syntax: [no] username <name> enable
The <name> variable specifies the user account to be enabled.
Retaining password history
The last 15 passwords used for a user account is retained in the CLI. A user cannot reuse any of
these passwords. This is for security purposes so that users do not use the same passwords
multiple times.
Setting passwords to expire
You can set a user password to expire. Once a password expires, the administrator must assign a
new password to the user.
To set a user password to expire, enter the following.
BigIron RX(config)# enable strict-password-enforcement
BigIron RX(config)# username sandy expires 20
Syntax: [no] username <name> expires <days>
The <name> variable specifies the user that the expiration time is applied to.
To Next Page
Loading...
