HP 10500 Series Configuration Manual page 28
Security configuration guide
Hide thumbs
Also See for 10500 Series:
- Security configuration manual (596 pages) ,
- Configuration manual (512 pages) ,
- Specifications (42 pages)
Table of Contents
Advertisement
Step
3.
Configure a password for
the local user.
4.
Assign service types for the
local user.
5.
Place the local user to the
active or blocked state.
6.
Set the maximum number
of concurrent users of the
local user account.
Configure password
7.
control attributes for the
local user.
8.
Configure binding
attributes for the local user.
Command
•
In non-FIPS mode:
password [ [ hash ] { cipher |
simple } password ]
•
In FIPS mode:
password
service-type { ftp | lan-access |
{ ssh | telnet | terminal } * |
portal }
state { active | block }
access-limit max-user-number
•
Set the password aging time:
password-control aging
aging-time
•
Set the minimum password
length:
password-control length
length
•
Configure the password
composition policy:
password-control composition
type-number type-number
[ type-length type-length ]
bind-attribute { ip ip-address |
location port slot-number
subslot-number port-number | mac
mac-address | vlan vlan-id } *
18
Remarks
Optional.
If you do not configure any password
for a local user, the local user does not
need to provide any password during
authentication, and can pass
authentication after entering the correct
local user name and passing attribute
checks. To achieve higher security,
configure a password for each local
user.
If you do not specify any parameter,
you enter the interactive mode to set a
plaintext password string. The
interactive mode is available only on
devices that support the password
control feature.
By default, no service is authorized to a
local user.
Optional.
By default, a created local user is in
active state and can request network
services.
Optional.
By default, there is no limit to the
maximum number of concurrent users
of a local user account.
The limit is effective only for local
accounting and is not effective for FTP
users.
Optional.
By default, the local user uses
password control attributes of the user
group to which the local user belongs,
and uses the global setting for any
password control attribute that is not
configured in the user group. The
global settings include a 90-day
password aging time, a minimum
password length of 10 characters, and
at least one password composition
type and at least one character
required for each password
composition type.
Optional.
By default, no binding attribute is
configured for a local user.
Advertisement
Table of Contents
Troubleshooting
