AAA, NAC, Guest Access & BYOD

Disabling admin and local users if they exceed the number of failed login attempts.

by ‎08-08-2016 03:29 PM - edited ‎08-08-2016 03:29 PM
Requirement:

CPPM version : 6.6.1.xxxxx

 


 



Solution:

Admin users and local users can now be disabled when they exceed an allowed number of failed login attempts.

For example, if the allowed number is five, the user will be disabled after the fifth failed attempt. The number of attempts you can specify can be from 1 to 100. When the configured number of failed login attempts is exceeded for an admin or local user account and the account is disabled, you can reset the failed attempts count to zero and re-enable all the account’s users.



Configuration:

Step 1:

To set the number of allowed attempts for Admin users please navigate to Administration > Users and Privileges > Account Settings > Disable Accounts > enter the number of allowed attempts in the Failed attempts count field as shown below and click save.


Step 2:

To set the number of allowed attempts please navigate to Configuration > Identity > Local Users > Account Settings > Disable Accounts >enter the number of allowed attempts in the Failed attempts count field as shown below and click on save.




Verification

When the configured number of failed login attempts is exceeded for an admin or local user account, we will see the following error message.

 

If Admin account is disabled we can reset the password by following the below steps in CLI,

1. Login into CLI as a appadmin user.

2. Execute the following command to to reset GUI admin password to default

#system admin-passwd-reset

A) If local users are disabled we can navigate to Configuration > Identity > Local Users > select the account and enable the user as shown below.

Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.