Juniper Networks J-Series Network Router User Manual


 
Table 21: Configuring Password Retry Limits for Telnet and SSH Access
CLI Configuration EditorJ-Web Configuration EditorTask
From the [edit] hierarchy
level, enter
edit system login
retry-options
1.
In the J-Web interface, select
Configuration>View and
Edit>Edit Configuration.
2.
Next to System, click Edit.
3.
Next to Login, click Configure
or Edit.
4.
Next to Retry options, click
Configure or Edit.
Navigate to the Retry options level in the configuration
hierarchy.
1.
Enter
set
tries-before-disconnect
4
2.
Enter
set backoff-threshold
2
3.
Enter
set backoff-factor 5
4.
Enter
set minimum-time 40
1.
In the Tries before disconnect
box, type 4.
2.
In the Backoff threshold box,
type 2.
3.
In the Backoff factor box, type
5.
4.
In the Minimum time box, type
40.
5.
Click OK.
Configure password retry limits for Telnet and SSH access.
TriesMaximum number of consecutive password
retries before a SSH or Telnet sessions is disconnected.
The default number is 10, but you can set a number
between 1 and 10.
Backoff thresholdThreshold number of password
retries after which a delay is introduced between two
consecutive password retries. The default number is
2, but you can set a number between 1 and 3.
Backoff factorDelay (in seconds) between
consecutive password retries after the threshold
number of password retries. The default delay is in
multiples of 5 seconds, but you can set a delay
between 5 and 10 seconds.
Minimum timeMinimum length of time (in seconds)
during which a Telnet or SSH session cannot be
disconnected. The default is 20 seconds, but you can
set a time between 20 and 60 seconds.
Configuring Password Retry Limits for Telnet and SSH Access 27
Chapter 1: Managing User Authentication and Access