accseccfg command
Use this command to display and configure account security settings.
Running the accseccfg command with no options displays all account security information. The following table shows the arguments for the options.
Option | Description | Values |
---|---|---|
-am | Sets user authentication method. | local, ldap, localldap, ldaplocal |
-lp | Lockout period after maximum login failures (minutes). | Between 0 and 2880, 0 = lockout period does not expire |
-pe | Password expiration time period (days). | Between 0 and 365, 0 = never expire |
-pew | Password expiration warning time period Note The Password expiration warning time period must be less than Password expiration time period. | Between 0 and 30, 0 = never warn |
-pc | Password complexity rules enabled. | on, off |
-pl | Password length. | If password complexity rules are enabled, the password length is between 8 and 32. Otherwise, it is between 0 and 32. |
-ci | Minimum password change interval (hours). | between 0 and 240, 0 = change immediately |
-lf | Maximum number of login failures. | Between 0 and 10, 0 = never locked |
-chgnew | Change new user password after first login. | on, off |
-rc | Password reuse cycle. | Between 0 and 10, 0 = reuse immediately |
-wt | Web and Secure Shell inactivity session timeout (minutes). | Between 0 and 1440 |
Example:
system> accseccfg
-legacy
-am local
-lp 2
-pe 0
-pr off
-pd 1
-pl 4
-ci 0
-lf 0
-chgnew off
-rc 0
-wt user
system>
Give documentation feedback