login

system login
Devices

User login

system login aaa
Devices

AAA options

system login aaa accounting <id>
Devices

Accounting list name

Reference:

system aaa list <id>

system login aaa authentication <id>
Devices

Authentication list name

Reference:

system aaa list <id>

Devices

System login banners

Devices
Values:

  • id

    Display a message after login

    Example: “Welcome to OSDx!”

Devices
Values:

  • id

    Display a message before login

    Example: “Warning: do not use this system without proper permissions.”

system login parameters
Devices

System login settings

system login parameters idle-timeout <u32>
Devices

Timeout interval in seconds

Values:

  • u32 – Disabled (infinite timeout timer) (0)

  • u32 – Seconds (1-65535)

system login parameters max-auth-tries <u32>
Devices

Maximum number of password authentication attempts allowed per connection

Values:

  • u32 – Disable limitation (0)

  • u32 – Number of attempts (1-65535)

system login parameters max-sessions <u32>
Devices
Values:

  • u32 – Maximum login sessions per user

system login parameters no-reuse-passwords
Devices

Does not let the user configure a previously used password

system login parameters no-reuse-passwords max-age <u32>
Devices

Time to store a password in days

Values:

  • u32 – Number of days (1-100000)

system login parameters no-reuse-passwords max-passwords <u32>
Devices

Number of passwords to store

Values:

  • u32 – Number of passwords (1-1000)

system login parameters password-prompt-delay <u32>
Devices
Values:

  • u32 – Delay of password request in seconds when authentication attempt fails

system login parameters quiet-lockout
Devices

Remove messages showing that an account is locked for exceeding the allowed attempts.

system login parameters unlock-time <u32>
Devices

Time until an account that has hit the maximum number of athentication attemps is unlocked

Values:

  • u32 – Never unlock (0)

  • u32 – Time in seconds (1-65535)

system login parameters user-min-length <u32>
Devices
Values:

  • u32 – Minimum length of the user name

system login role <txt>
Devices

User role

Values:

  • txt – Role name (1-32)

Instances:

Multiple

Required:

system login role <txt> level <u32>

system login role <txt> authentication
Devices

Authentication for role members

system login role <txt> authentication public-key <id>
Devices
Values:

  • id

    Public key attached to this role

    The key-based authentication involves two files: a public key and a private key. The first one is used for encrypting communications with a client that presumably owns the private key. As the private key should be owned only by a group or an individual, communications are always secure and the identity of the peers is always known. This is the so-called asymmetric encryption.

Instances:

Multiple

system login role <txt> level <u32>
Devices

Role privilege level

Values:

  • u32 – Privilege level (0-15)

system login user <txt>
Devices

User account information

Values:

  • txt – User name (1-32)

Instances:

Multiple

Required:

system login user <txt> authentication

system login user <txt> authentication
Devices

Authentication password

Required:

system login user <txt> authentication encrypted-password <txt>

system login user <txt> authentication encrypted-password <txt>
Devices
Values:

  • txt – Encrypted password for this user

system login user <txt> authentication public-key <id>
Devices
Values:

  • id

    Public key attached to this user

    The key-based authentication involves two files: a public key and a private key. The first one is used for encrypting communications with a client that presumably owns the private key. As the private key should be owned only by a group or an individual, communications are always secure and the identity of the peers is always known. This is the so-called asymmetric encryption.

Instances:

Multiple

system login user <txt> role <id>
Devices
Values:

  • id – User role