BCSM IN A NUTSHELL 2008
© 2008 Brocade Communications Systems, Incorporated.
Page 7 of 44
ACCOUNT LOCKOUT POLICY
• Disables a user account when the user exceeds a configurable number of failed login attempts
• Policy can be configured to:
o Keep account locked until explicit administrative action is taken
o Automatically unlock after a specified duration
• Administrator may unlock a locked account at any time
PASSWORD EXPIRATION POLICY
• Forces expiration of a password after a configurable period of time
• When a password expires, user must change the password to complete the authentication process
and open a user session
• A warning that password expiration is approaching is displayed when user logs in
• Number of days prior to expiration is a configurable parameter
• Password expiration policy is enforced across all user accounts except the root and factory
accounts
PASSWORD STRENGTH POLICY
• Enforces a set of rules that new passwords must satisfy
• Is enforced across all user accounts
• Is enforced only when a new password is defined
• Configurable attributes
o Minimum number of lowercase and uppercase alphabetic characters
o Minimum number of numeric digits in the password
o Minimum number of punctuation characters in the password
o Minimum password length may be set from 8-40 characters
o Maximum number of repeated characters
o Maximum number of sequential characters
PASSWORD HISTORY POLICY
• Specifies the number of past password values that are disallowed when setting a new password
• A value of 1-24 may be specified (default value is 1)
• Prevents reuse of recently used passwords
• The password history policy is enforced only when a new password is defined
• Password history policy is enforced across all user accounts
Comments to this Manuals