Configuring the user account security policies

System Administrator Guide for VSP 5000 Series

Version
90-09-2x
Audience
anonymous
Part Number
MK-98RD9009-16

Use the following procedure to configure the user account security policies, which include password requirements and login restrictions.

  • You must have the Security Administrator (View & Modify) role to perform this task.
  1. Select Settings > User Management > Edit User Account Policies.
  2. In the Edit User Account Policies window, enter the setting for each item.
    Item Description
    Numeric Characters (0-9) The minimum number of numeric characters required for a password or a passphrase used as the password.
    Uppercase Characters (A-Z) The minimum number of uppercase characters required for a password or a passphrase used as the password.
    Lowercase Characters (a-z) The minimum number of lowercase characters required for a password or a passphrase used as the password.
    Symbols The minimum number of symbols required for a password or a passphrase used as the password.
    Total The total minimum number of characters required for a password.
    Limit Available Keywords Whether to enable the restrictions on keywords available in a password:
    • Yes: The keyword restrictions are enabled.
    • No: The keyword restrictions are disabled.

    When enabled, the user name cannot be specified as the password.

    Number of Previous Passwords that Cannot be Reused The number of previous passwords that cannot be reused. Only the specified number of the previous passwords are kept in the history, and reusing them is not allowed.
    Require Password Change on First Login Whether to require a user to change the password on the first login:
    • Yes: The password change request on the first login is enabled.
    • No: The password change request on the first login is disabled.

    When enabled, the user is required to forcibly change the password when the user logs in to HDvM - SN for the first time.

    Password Change Prohibition Period (days) The minimum number of days before the next password change since the last password change. The password cannot be changed during the specified period.
    Password Validity Period (days) The number of days that a password is valid. The user access is restricted after the specified period. It is set to Unlimited by specifying a blank.
    Lockout Mode The setting mode that applies if the user is locked out of the account:
    • Lock Account: The user account is locked during the time specified in Lockout Period (sec.) if the user attempts to log in unsuccessfully the number of times specified for Allowed Login Attempts.
    • Disable Account: Disable the user account if the user attempts to log in unsuccessfully the number of times specified for Allowed Login Attempts.
    Allowed Login Attempts The number of allowed consecutive failed login attempts. It is set to Unlimited by specifying a blank.
    Lockout Period (sec.) The number of seconds that a user is locked out of the account due to failed login attempts. If the user attempts to log in unsuccessfully the specified number of times, the login is disabled until this specified number of seconds has passed since the last log in attempt.

    This item can be specified if Lockout Mode is Lock Account, or if blank (Unlimited) is not specified for Allowed Login Attempts.

    Note: Any of the following operations might unlock the locked user account. Confirm the user account status after performing the operations:
    • Shortening Lockout Period (sec.).
    • Reducing the number of Allowed Login Attempts.
    • Changing Lockout Mode from Lock Account to Disable Account.
  3. Click Finish.
  4. In the Edit User Account Policies confirmation window, verify the settings, and then enter a task name.
    If you want the Tasks window to open after you click Apply, make sure Go to tasks window for status is checked.
  5. Click Apply to apply the settings to the storage system.