Command Manual – Getting Started
Quidway S8500 Series Routing Switches Chapter 2
Password Control Configuration Commands
Huawei Technologies Proprietary
2-5
Description
Use the password-control aging aging-time command to configure the aging time for
system login passwords. This command can also be carried out in the local user view.
Use the password-control length length command to configure the minimum length
for the system login passwords. This command can also be carried out in the local user
view.
Use the password-control login-attempt login-times command to configure the
number of password attempts allowed for each user.
Use the password-control history max-record-num command to configure the
maximum number of history password records allowed for each user.
Use the password-control alert-before-expire alert-time command to configure the
alert time before password expiration.
Use the password-control authentication-timeout authentication-timeout command
to configure the timeout time for user password authentication.
Use the password-control login-attempt attempt-time exceed command to configure
the processing mode used after password attempt fails.
Example
# Configure the aging time of the system login passwords to 100 days.
<Quidway>system-view
System View: return to User View with Ctrl+Z.
[Quidway] password-control aging 100
# Configure the minimum length of the system login passwords to 8 characters.
[Quidway] password-control length 8
# Configure the number of password attempts allowed for each user to 5.
[Quidway] password-control login-attempt 5
# Configure the maximum number of history password records allowed for each user to
10.
[Quidway] password-control history 10
# Configure the alert time so that users are alerted 7 days before their passwords
expire.
[Quidway] password-control alert-before-expire 7
# Configure the timeout time of the user password authentication to 100 seconds.
[Quidway] password-control authentication-timeout 100
# Configure the processing mode so that the system locks the user after failed
password authentication attempts and allow the user to log in to the switch again 360
minutes later.