To Next Page

To Previous Page

419

password-control login-attempt

Use password-control login-attempt to configure the login attempt limit. The settings include the

maximum number of consecutive login failures and the action to be taken when the maximum

number is reached.

Use undo password-control login-attempt to restore the default.

Syntax

password-control login-attempt login-times [ exceed { lock | lock-time time | unlock } ]

undo password-control login-attempt

Default

The global login-attempt settings:

• The maximum number of consecutive login failures is 3.

• The locking period is 1 minute.

The login-attempt settings for a user group equal the global settings.

The login-attempt settings for a local user equal those for the user group to which the local user

belongs.

Views

System view

User group view

Local user view

Predefined user roles

network-admin

Parameters

exceed: Specifies an action to be taken for the user who fails to log in after making the maximum

number of attempts.

• lock: Disables the user account permanently.

• lock-time time: Disables the user account for a period of time. The user can uses this user

account when the timer expires. The value range for the time argument is 1 to 360 minutes.

• unlock: Allows the user account to continue using this account to perform login attempts.

Usage guidelines

The login-attempt policy depends on the view:

• The policy in system view has global significance and applies to all user groups.

• The policy in user group view applies to all local users in the user group.

• The policy in local user view applies only to the local user.

A login-attempt policy with a smaller application scope has higher priority. The system prefers to use

the login-attempt policy in local user view for a local user.

• If no policy is configured for the local user, the system uses the policy for the user group to

which the local user belongs.

• If no policy is configured for the user group, the system uses the global policy.

If an FTP or VTY user fails to log in, the system adds the user account and the user's IP address to

the password control blacklist. When the maximum number of consecutive login failures is reached,

the login attempt limit feature is triggered.

Other manuals for H3C MSR Series

Manual33 pages

Probe Command Reference28 pages

Configuration Guide80 pages

Troubleshooting Guide28 pages

User Guide26 pages

Questions and Answers:

Need help?

Do you have a question about the H3C MSR Series and is the answer not in the manual?

H3C MSR Series Specifications

General

Category	Network Router
IPv6 Support	Yes
Dimensions	Varies by model
Weight	Varies by model
Product Type	Modular Router
Ports	Varies by model
WAN Interfaces	Varies by model
Firewall	Yes
QoS	Yes
Wireless Support	Varies by model
USB Ports	Varies by model
Console Port	Yes
Power Supply	Varies by model
Redundancy	Varies by model
Operating Temperature	0°C to 45°C
Storage Temperature	-40°C to 70°C
Humidity	5% to 95% non-condensing
Series	MSR
Certifications	CE, FCC, RoHS