3com 5500-SI Manual Do Utilizador
Displaying Password Control 581
The system administrator can perform the following operations to manually remove
one or all user entries in the blacklist.
one or all user entries in the blacklist.
Configuring the Timeout
Time for Users to be
authenticated
When the local/remote server receives the user name, the authentication starts; when
the user authentication is completed, the authentication ends. Whether the user is
authenticated on the local server or on a remote server is determined by the related
AAA configuration. For more details, see the Security Part of 3Com SWITCH 5500
Series Ethernet Switches Operation Manual.
the user authentication is completed, the authentication ends. Whether the user is
authenticated on the local server or on a remote server is determined by the related
AAA configuration. For more details, see the Security Part of 3Com SWITCH 5500
Series Ethernet Switches Operation Manual.
If a password authentication is not completed before the authentication timeout
expires, the authentication fails, and the system terminates the connection and makes
some logging.
expires, the authentication fails, and the system terminates the connection and makes
some logging.
If a password authentication is completed before the authentication timeout expires,
the user will log into the switch normally.
the user will log into the switch normally.
Displaying Password
Control
Control
After completing the above configuration, you can execute the display command in
any view to display the operation of the password control and verify your
configuration.
any view to display the operation of the password control and verify your
configuration.
Table 641 Manually remove one or all user entries in the blacklist
Operation
Command
Description
Enter system view
system-view
—
Delete one specific or all
user entries in the blacklist
user entries in the blacklist
reset password-control
blacklist [ username
username ]
blacklist [ username
username ]
Executing this command without the
username username option removes all
the user entries in the blacklist.
username username option removes all
the user entries in the blacklist.
Executing this command with the
username username option removes the
specified user entry in the blacklist.
username username option removes the
specified user entry in the blacklist.
Table 642 Configure the timeout time for users to be authenticated
Operation
Command
Description
Enter system view
system-view
—
Configure the timeout
time for users to be
authenticated
time for users to be
authenticated
password-control
authentication-timeout
authentication-timeout
authentication-timeout
authentication-timeout
Optional
By default, it is 60 seconds.
By default, it is 60 seconds.
Table 643 Displaying password control
Operation
Command
Display the information about the
password control for all users
password control for all users
display password-control
Display the information about the
super password control
super password control
display password-control super
Display the information about one or
all users who have been added to the
blacklist because of password attempt
failure
all users who have been added to the
blacklist because of password attempt
failure
display password-control blacklist [ username
username | ipaddress ip-address ]