78 Chapter 4 BCM50 Security Policies and Accounts and Privileges
NN40020-600NN40020-600
Password
Complexity Level
(telset interface)
1
2
3
4
5
Specifies the number of unique digits that must be part of a
telset password:
0: No complexity checks
1: one unique digit
2: two unique digits
3: three unique digits
4: four unique digits
5: prevent consecutive numbering
Note: A password complexity higher than 0 will ensure that the
user name is not used as the password. Check the minimum
length setting to ensure that it is equal to or greater than the
complexity level.
Lockout on Failed Logon
Enable lockout check box When checked, specifies that enable lockout rules apply to
users.
Lockout counter digits Specifies the number of times the user can attempt to enter an
invalid password before the user is locked out. Default: 25; for
increased security, set this number to 5.
Refer to “View by Accounts” on page 114 (Locked Out box) and
“View by Accounts: General” on page 116 (Login History)
Lockout duration
(min)
minutes Specifies the amount of time after the user is locked out before
they are allowed to login again. Reset the lockout counter to
zero. Default: 30
Lockout counter
reset
minutes Specifies the number of minutes after a lockout before the
lockout counter is automatically reset to zero. Default: 30
Example: If the lockout counter reset is set at 30 minutes and a
user enters invalid passwords, but does not reach the lockout
counter threshold, then waits 30 minutes before trying again,
the lockout counter resets and begins counting from 1 again.
If the user enters invalid passwords until the lockout counter
threshold is reached, the Lockout duration determines when the
user can sign back onto the system.
Password Expiry
Enable password
expiry
check box When checked, specifies that the account will expire at a
specified time.
Days before
password expire
up to 256 Enter the number of days the a password can remain valid
before it must be changed.
Warning days before
password expire
Enter the number of days prior to password expiry that a user
will receive notification.
Password History
Enable password
history
checkbox When checked, the BCM stores a list of previously used
passwords and prevents users from re-using them.
Password history
length
numeric value Enter the number of previously used passwords to be stored
and checked for this account to prevent password re-use.
Authentication Service Policy tab
Table 17 Security Policies fields (Continued)
Attribute Value Description