[x]

Configuring attack detection and prevention > Configuring the user blacklist feature

 

 Next

Configuring the user blacklist feature

The user blacklist feature filters packets sourced from users in blacklist entries.

A user blacklist entry can only be manually added by using the blacklist user command. A user blacklist entry does not age out by default. You can set an aging time for the entry.

The user blacklist feature must be used together with the user identification feature. For more information about user identification, see "Configuring user identification."

To configure the user blacklist feature:

Step

Command

Remarks

1. Enter system view.

system-view

N/A

2. Enable the global blacklist feature.

blacklist global enable

By default, the global blacklist feature is disabled.

3. Add a user blacklist entry.

blacklist user user-name [ timeout minutes ]

By default, no user blacklist entries exist.

4. (Optional.) Enable logging for the blacklist feature.

blacklist logging enable

By default, logging is disabled for the blacklist feature.

prev

 

up

 next

Configuring the IP blacklist feature 

home

 Configuring login attack prevention

© Copyright 2016 Hewlett Packard Enterprise Development LP