display password-control

Use display password-control to display password control configuration.

Syntax

display password-control [ super ]

Views

Any view

Predefined user roles

network-admin

network-operator

mdc-admin

mdc-operator

Parameters

super: Displays the password control information for the super passwords. If you do not specify this keyword, the command displays the global password control configuration.

Examples

# Display the global password control configuration.

<Sysname> display password-control
 Global password control configurations:
 Password control:                     Disabled
 Password aging:                       Enabled (90 days)
 Password length:                      Enabled (10 characters)
 Password composition:                 Enabled (1 types, 1 characters per type)
 Password history:                     Enabled (max history records:4)
 Early notice on password expiration:  7 days
 Maximum login attempts:               3
 Action for exceeding login attempts:  Lock user for 1 minutes
 Minimum interval between two updates: 24 hours
 User account idle time:               90 days
 Logins with aged password:            3 times in 30 days
 Password complexity:                  Disabled (username checking)
                                       Disabled (repeated characters checking)

# Display the password control configuration for super passwords.

<Sysname> display password-control super
 Super password control configurations:
 Password aging:                       Enabled (90 days)
 Password length:                      Enabled (10 characters)
 Password composition:                 Enabled (1 types, 1 characters per type)

Table 13: Command output

Field	Description
Password control	Whether the password control feature is enabled.
Password aging	Whether password expiration is enabled and, if enabled, the aging time.
Password length	Whether the minimum password length restriction feature is enabled and, if enabled, the setting.
Password composition	Whether the password composition restriction feature is enabled and, if enabled, the settings.
Password history	Whether the password history feature is enabled and, if enabled, the setting.
Early notice on password expiration	Number of days during which the user is notified of the pending password expiration.
Maximum login attempts	Allowed maximum number of consecutive failed login attempts for FTP and VTY users.
Action for exceeding login attempts	Action to be taken after a user fails to log in after the specified number of attempts.
Minimum interval between two updates	Minimum password update interval.
Logins with aged password	Number of times and maximum number of days a user can log in using an expired password.
Password complexity	Whether the following password complexity checking is enabled: username checking—Checks whether a password contains the username or the reverse of the username. repeated characters checking—Checks whether a password contains any character that appears consecutively three or more times.

prev	up	next
Password control commands	home	display password-control blacklist