The set password-max-suspension command sets the time after which a suspended password reactivates.
This setting only applies to accounts that were suspended because the user tried to log in too many times with the wrong credentials, as set with the set password-retries command.
CA Directory uses the operational attribute dxPwdFailedTime to record the time since the account was suspended due to failed login attempts.
This command has the following format:
set password-max-suspension = number-seconds | 0 ;
Specifies the time (in seconds) for which a suspended password remains suspended. After the time has passed, the account in active.
(Default) Disables this feature.
Copyright © 2009 CA. All rights reserved. | Email CA about this topic |