No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

OceanStor 9000 V300R006C00 Object Storage Service (Compatible with Amazon S3 APIs) Administrator Guide 07

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring Security Policy for Administrator Accounts

Configuring Security Policy for Administrator Accounts

Security policies include the password policy, login policy. Security policies are used to protect the system security.

Procedure

  1. Log in to DeviceManager.
  2. Choose Settings > Permission Settings > Security Policies.
  3. Configuring the password policy and login policy.

    Table 15-2 and Table 15-3 describe related parameters.
    Table 15-2  Password Policy

    Parameter

    Description

    Value

    Min. Length

    Minimum length of the user password. A complex password is recommended.

    [Value range]

    Its value is an integer ranging from 8 to 32.

    [Default value]

    8

    Max. Length

    Maximum length of the user password. This parameter prevents administrators from configuring lengthy passwords.

    [Value range]

    Its value is an integer ranging from 8 to 32.

    [Default value]

    32

    Complexity

    Complexity of the user password. A complex password is recommended.

    [Value range]

    Must contain special characters and any two types of uppercase letters, lowercase letters and digits or Must contain special characters, uppercase letters, lowercase letters and digits

    [Default value]

    Must contains special characters and any two types of uppercase letters, lowercase letters and digits.

    The special characters include !"#$%&'()*+,-./:;<=>?@[\]^`{_|}~ and spaces.

    Number of Duplicate Characters

    Maximum number of consecutive duplicate characters.

    [Value range]

    Its value is Not limited or an integer ranging from 1 to 9.

    [Default value]

    3

    Number of Retained Historical Passwords

    Number of retained historical passwords of the account. A new password must be different from retained historical passwords. If the value is 0, the number is not limited.

    [Value range]

    Its value is an integer ranging from 0 to 30.

    [Default value]

    5

    Password Validity Period (Days)

    Setting of the password's validity period. You are advised to enable Password validity period.

    After Password Validity Period is enabled, you need to set the password validity days. After the validity period of a password expires, the system prompts you to change the password in a timely manner.

    [Value range]

    Its value is an integer ranging from 1 to 999.

    [Default value]

    Unable

    Password Expiration Warning Period (Days)

    Number of days prior to password expiration that the user receives a warning message.

    [Value range]

    Its value is an integer ranging from 1 to 99.

    [Default value]

    7

    Password Change Interval (minutes)

    Change interval of a password.

    [Value range]

    Its value is an integer ranging from 1 to 9999.

    [Default value]

    5

    Table 15-3  Login Policy

    Parameter

    Description

    Value

    Session Timeout Duration (Minutes)

    Duration after which the system indicates timeout if a logged-in user performs no operations during the period. After you click OK in the event of timeout, the system returns to the login page.

    [Value range]

    Its value is an integer ranging from 1 to 1440.

    [Default value]

    30

    Password Lock

    Locking a user if the times of consecutively inputting incorrect passwords by the user exceed Number of Incorrect Passwords.
    NOTICE:

    Security risks arise if you disable password lock. You are advised to enable password lock.

    [Default value]

    Enabled

    Number of Incorrect Passwords

    Times allowed for consecutively entering incorrect passwords. When incorrect passwords are input exceeds the Number of Incorrect Passwords times, the user is automatically locked.

    NOTE:

    This parameter is available only when Password Lock is enabled.

    After the user is locked, the super administrator can manually unlock the user. If the Lock Mode is Temporary, after the duration is reached, the user is automatically unlocked.

    [Value range]

    Its value is an integer ranging from 1 to 9.

    [Default value]

    3

    Lock Mode

    Mode of automatically locking a user.
    • If you select Permanent, administrators, device administrators, resource administrators, and read-only users will be permanently locked. The super administrator will be automatically unlocked after being locked for 15 minutes.
    • If you select Temporary, you can set the duration of locking super administrators, administrators, device administrators, resource administrators, and read-only users.

    [Default value]

    Temporary

    Automatic Unlock in (Minutes)

    Duration of user locking. After the lock duration expires, the locked user is automatically unlocked.
    • This parameter is available only when Password Lock is enabled and Lock Mode is Temporary.
    • This parameter is available to automatic lock only. This parameter is unavailable if the user is manually locked. A manually locked user can be manually unlocked only.
    • If the number of entered incorrect passwords exceeds the upper limit, the account is locked.

    [Value range]

    Its value is an integer ranging from 3 to 2000.

    [Default value]

    15

    Account Lock

    A system account will be locked if it is not used for login and the idle period exceeds the specified days.

    [Default value]

    Disable

    Idle Period (Days)

    Idle days of a system account.

    [Value range]

    Its value is an integer ranging from 1 to 999.

    [Default value]

    60

    Login Security Info

    After a user login, information about the last login (including the login time and IP address) is displayed.

    [Default value]

    Disable

    Verification code

    Verification code is required upon every login.

    [Default value]

    Disable

    User-Defined Info

    After an account's successful login, an alarm is displayed indicating the preset information.

    [Default value]

    Disable

    Info

    The information to prompt the successful login of user account.

    [Example]

    Login successful

  4. Confirm the operation of configuring security policy.
    1. Click Save.

      The Execution Result dialog box is displayed, indicating that the operation succeeded.

    2. Click Close to finish configuring the security policy.
Translation
Download
Updated: 2019-04-28

Document ID: EDOC1000122523

Views: 11932

Downloads: 84

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next