aaa authentication

Syntax

aaa authentication user-based-lockout

no aaa authentication user-based-lockout

aaa authentication lockout-delay <delay-time>

Description

Locks out users based on their usernames. RADIUS and TACACS users are locked out only if they logged in to the switch successfully at least once.

The no form unlocks currently locked-out users.

Context

config

Parameters

delay-time
Delay time in seconds for user-based lockout to begin. Range: 0 to 3600.

Example

Initiate user-based lockout:

switch(config)# aaa authentication user-based-lockout

Example

Initiate user-based lockout after a 10-minute delay.

aaa authentication lockout-delay 600