Previous Topic: set password-max-substring-repetition Command

Next Topic: set password-mimic-netscape-response-controls Command

set password-max-suspension Command

The set password-max-suspension command sets the time after which a suspended password reactivates.

This setting only applies to accounts that were suspended because the user tried to log in too many times with the wrong credentials, as set with the set password-retries command.

CA Directory uses the operational attribute dxPwdFailedTime to record the time since the account was suspended due to failed login attempts.

This command has the following format:

set password-max-suspension = number-seconds | 0 ;
number-seconds

Specifies the time (in seconds) for which a suspended password remains suspended. After the time has passed, the account in active.

0

(Default) Disables this feature.

More information:

Set the Time after Which Users Can Attempt to Log In Again