3Com 5500-SI Switch User Manual


 
Password Control Configuration 579
Configuring History
Password Recording
With this function enabled, when a login password expires, the system requires the
user to input a new password and save the old password automatically. You can
configure the maximum number of history records allowed for each user. The purpose
is to inhibit the users from using one single password or using an old password for a
long time to enhance the security.
When the system adds a new record but the number of the recorded history
passwords has reached the configured maximum number, the system replaces the
oldest record with the new one.
When you configure the maximum number of history password records for a user,
the excessive old records will be lost if the number of the history password records
exceeds the configured number.
When changing a password, do not use the recorded history password; otherwise,
the system will prompt you to reset a password.
The system administrator can perform the following operations to manually remove
history password records.
Table 637 Configure history password recording
Operation Command Description
Enter system view system-view
Enable history password
recording
password-control history enable Optional
By default, history password
recording is enabled.
Configure the maximum
number of the history
password records
password-control history
max-record-num
Optional
By default, the maximum
number is four.
Display the information
about the global password
control for all users.
Optional
You can execute the display
command in any view.
Table 638 Manually remove history password records
Operation Command Description
Enter system view system-view
Remove history password
records of one or all users
reset password-control
history-record [ username
username ]
Executing this command without the
username username option removes
the history password records of all
users.
Executing this command with the
username username option removes
the history password records of the
specified user.
Remove history records of
one or all super passwords
reset password-control
history-record super [ level
level-value ]
Executing this command without the
level level-value option removes the
history records of all super
passwords.
Executing this command with the
level level-value option removes the
history records of the super password
for the users at the specified level.