This section outlines how to enable session management.
To Enable Session Management
Choose Users from the Configuration Menu. The Session/User Management - Advanced page opens.
Select the Enable Session Management checkbox and click Submit.
Enter your username and password and click Submit. Session management fields become active.
Configure settings using the information in the following table as a guide. When you have finished configuring settings, click Submit to make your changes take effect.
Session/User Management - Advanced Parameters
Field | Description |
---|
Enable Session Management | Enables session management for the web user interface. You must enable Session Management before you can use the User Management configuration page. |
Enable User Management | Enables user management configuration parameters. Refer to Session/User Management - Enabling User Management. |
Terminal Settings Sets the length of inactivity allowed before login sessions are terminated. |
Terminal Inactivity Timeout (seconds) | Enter a timeout value between 0 (disabled) and 86400 seconds. This timer applies to Console, Telnet, and SSH logins. Changes to this value do not affect sessions that are already open. The timer starts counting when the session is available to receive a command. The timer is not reset until a complete command is entered. An empty command resets the timer (for example, clicking Enter). The timer is not active when a command is running (for example, continuous ping). A value of '0' disables the inactivity timer. The largest allowed timeout value is 86400 seconds. The default is '0'. |
Session Management Settings Configure GUI session settings. |
GUI Inactivity Timeout (minutes) | Enter the time in minutes after which a GUI session will expire. Range is 5 to 60 minutes. |
GUI Maximum Sessions | Enter the maximum allowed number of GUI sessions for the system. Range is 1 to 100. |
GUI Maximum Sessions Per User | Enter the maximum allowed GUI sessions for a single user. Range is 1 to 10. |
Password Configuration Settings |
Disable Strong Password Enforcement | Box is un-checked by default: Strong Password Enforcement is enabled to require that new passwords be complex. • When the box is un-checked, you can configure password enforcement parameters. • When the box is checked, new passwords are not required to be complex. Note: If user management is enabled, this checkbox is not available on the configuration page and you have the option to edit all of the password enforcement parameters. Refer to Default Password Change and Strong Password Enforcement. |
Minimum Password Length | Minimum number of required characters a password must contain. Note: Maximum password length is 32 characters. Configurable range is 8-15 characters. |
Minimum Password Age | Minimum number of days before a password can be changed. Range is 0 to 30 days. |
Maximum Password Age | Maximum number days after which the password will expire. Range is 30 to 180 days. Once a user password has reached the maximum age, the user is forced perform a password change prior to gaining system access. A user account will be disabled if the user fails to perform a password change after three notifications of password expiration. |
Password Changes Till Reuse | To prevent password flipping, the user is denied the ability to re-use recently used passwords. Range is 0 to 16 previous passwords. |
Minimum Changed Characters Required | Minimum number of characters that must be changed from the previously used password. Range is 1 to 4. |
Minimum Alphabet Characters Required | Range is 0 to 4. |
Minimum Upper Case Alphabet Characters Required | Range is 0 to 2. |
Minimum lower Case Alphabet Characters Required | Range is 0 to 2. |
Minimum Numeric Characters Required | Range is 0 to 2. |
Minimum Special Characters Required | Range is 0 to 2. Special characters are the non alphabet or numeric ASCII characters between codes 33 and 127. |
Maximum Consecutive Repeating Characters Allowed | Range is 0 to 4. |