Alcatel-Lucent 6850-48 Reference Guide
AAA Commands
OmniSwitch CLI Reference Guide
September 2009
page 58-61
user lockout-window
Configures a moving period of time (observation window) during which failed login attempts are counted
to determine if the number of failed attempts has exceeded the number of allowed attempts. The number
of failed login attempts is decremented by the number of failed attempts that age beyond the observation
window time period.
to determine if the number of failed attempts has exceeded the number of allowed attempts. The number
of failed login attempts is decremented by the number of failed attempts that age beyond the observation
window time period.
user lockout-window minutes
Syntax Definitions
minutes
The number of minutes the observation window remains active. The
range is 0 to 99999.
range is 0 to 99999.
Defaults
Platforms Supported
OmniSwitch 6400, 6850, 6855, 9000, 9000E
Usage Guidelines
• This command is only available to the admin user because the admin user account is the only account
protected from any type of lockout attempt.
• Specify 0 with this command to disable the observation window function. This means that failed login
attempts will never age out; the number of failed attempts is never decremented.
• Do not configure an observation window time period that is greater than the lockout duration time
period.
• If the number of failed login attempts exceeds the number of failed attempts allowed before the obser-
vation window time expires, then the user account is locked out of the switch.
• The observation window time period is a global lockout setting that is applied to all passwords config-
ured on the switch.
• Lockout settings are saved automatically; that is, these settings do not require the
command to save user settings over a reboot.
Examples
-> user lockout-window 500
-> user lockout-window 0
Release History
Release 6.3.1; command was introduced.
parameter
default
minutes
0