| Overview | Package | Class | Deprecated | Help |
| Properties | |
|---|---|
| adminPassword |
adminPassword is used to configure the password which enables
a user to become a system administrator.
type=string default= minimum=0 maximum=80 Displayed(tab/group)=Admin Password (/Authentication) |
| aging |
Number of days a user password is valid before the user must
change his password. If the value of tmnxPasswordAging
is set to '65535', password aging is disabled.
type=int default=65535 minimum=1 maximum=65535 Displayed(tab/group)=Days Before Expiration (/Properties) |
| attemptsCount |
The maximum number of unsuccessful login attempts allowed
for a user. The value of tmnxPasswordAttemptsCount is used
with the value of tmnxPasswordAttemptsTime to find out if
the user is to be locked out for tmnxPasswordAttemptsLockoutPeriod.
type=int default=3 minimum=1 maximum=64 Displayed(tab/group)=Maximum Attempts (/Properties) |
| attemptsMinutes |
This is used in conjunction with attemptsCount
to find out if the user is to be locked out for
lockoutMinutes.
type=int default=5 minimum=0 maximum=60 Displayed(tab/group)=Maximum Attempts Time (minutes) (/Properties) |
| authExitOnReject |
If the value of authExitOnReject is set to 'true' and
if one of the AAA methods configured in tmnxPasswordAuthenOrder1,
tmnxPasswordAuthenOrder2, tmnxPasswordAuthenOrder3 sends a reject,
then the next method in the order will not be tried. If the value
of this object is set to 'false' and if one AAA method sends a
reject, the next AAA method will be attempted. If in this process,
all the AAA methods are exhausted, it will be considered as a
reject.
type=boolean default=false Displayed(tab/group)=Exit On Reject (/Authentication) |
| authOrder1 |
The most preferred method to authenticate and authorize a user.
If this method fails, the next method in the sequence identified by
authOrder2 is used.
type=sitesec.AuthOrder default=radius Displayed(tab/group)=Authentication Order 1 (/Authentication) |
| authOrder2 |
The next most preferred method to authenticate and authorize a user.
If this method fails, the next method in the sequence identified by
authOrder3 is used.
type=sitesec.AuthOrder default=tacplus Displayed(tab/group)=Authentication Order 2 (/Authentication) |
| authOrder3 |
The next most preferred method to authenticate and authorize a user.
If this method fails, the next method in the sequence identified by
authOrder4 (if applicable for the node type) is used.
type=sitesec.AuthOrder default=local Displayed(tab/group)=Authentication Order 3 (/Authentication) |
| authOrder4 |
The next most preferred method to authenticate and authorize a user.
type=sitesec.AuthOrder default=ldap Displayed(tab/group)=Authentication Order 4 (/Authentication) |
| complexity |
The complexity requirements for the passwords.
'alpha-numeric' - at least one numeric character must
be present in the password.
'mixed-case' - at least one upper and one lower case
character must be present in the password.
'special-character' - at least one non-alphanumeric
character must be present in the password.
DEPRECATED: 12.0R1- For 12.0 R1+ 7750, 740, 7710, 7950 nodes type=long default=unspecified Displayed(tab/group)=Complexity (/Properties) bits= 0x80: alphaNumeric - Numeric Characters 0x40: mixedCase - Mixed Case 0x20: specialCharacter - Special Characters |
| dynSvcPassword |
The value of dynSvcPassword is used to configure the password which enables manual modification of dynamic services.
type=string default= minimum=0 maximum=20 Displayed(tab/group)=Dynamic Service Password (/Authentication) |
| enableAdminPrivLvl |
The value of enableAdminPrivLvl specifies
the privilege level used when sending a TACACS+ ENABLE request.
When the value of tmnxTacPlusAuthorization is 'true(1)' and the value
of tmnxTacPlusAuthorUsePrivLvl is 'true(1)' and the value of
tmnxTacPlusInteractiveAuthen is 'true(1)', a TACACS+ authentication
request for the ENABLE service with this configured privilege level
is used instead of requesting tmnxAdminPassword when the user
wants to become a system administrator.
type=int default=-1 minimum=-1 maximum=15 Displayed(tab/group)=Tacplus Map to Privilege Level (/Enable Admin Control) |
| isAdminPasswordEncrypted |
When the value of isAdminPasswordEncrypted is 'true', the
password specified by tmnxUserPassword is in the encrypted
form.
When the value of isAdminPasswordEncrypted is 'false', the
password specified by tmnxUserPassword is in plain text.
tmnxUserPassword and isAdminPasswordEncrypted, which indicates
whether or not the password string is encrypted, must be set
together in the same SNMP request PDU or else the set request
will fail with an inconsistentValue error.
type=generic.TruthValue default=true |
| isPasswordAllowUserName |
The value of tmnxPasswordAllowUserName specifies if the new password
will be allowed if it contains the user name in some form.
type=generic.TruthValue default=false Displayed(tab/group)=User Name Allowed in Password (/Complexity Rules) |
| isPasswordHealthCheck |
When the value of isPasswordHealthCheck is 'true', the
Radius servers configured in tmnxRadiusServerTable
and the 'TacPlus' servers configured in tmnxTacPlusServerTable will be
periodically monitored. Each server will be contacted
every 30 seconds. If in this process a server is found to
be unreachable, or a previously unreachable server starts responding,
based on the type of the server, a
TIMETRA-SYSTEM-MIB:radiusServerOperStatusChange or a
TIMETRA-SYSTEM-MIB:tacplusServerOperStatusChange trap will be sent.
When the value of isPasswordHealthCheck is 'false', periodic
monitoring of the RADIUS and TAC Plus servers is disabled.
type=generic.TruthValue default=true Displayed(tab/group)=Health Check (/Properties) |
| lockoutMinutes |
The number of minutes the user is locked out if the threshold
of unsuccessful login attempts has exceeded.
type=int default=10 minimum=0 maximum=1440 Displayed(tab/group)=Lockout Time (minutes) (/Properties) |
| minLength |
The minimum number of characters required in the password.
type=int default=6 minimum=1 maximum=50 Displayed(tab/group)=Minimum Length (/Properties), Minimum Length (/Complexity Rules) |
| neverExpires |
If true, the password never expires.
type=boolean default=true Displayed(tab/group)=Password Never Expires (/Properties) |
| passwordCreditsLowerCase |
The value of tmnxPasswordCreditsLowerCase specifies the maximum credit
for having lowercase characters in your password. Please see
tmnxPasswordMinLength for an explanation of how password credits work.
A value of zero (0) indicates no credits will be given for having
lowercase characters in your password.
This field can only be set to non-zero if tmnxPasswordReqLowerCase,
tmnxPasswordReqUpperCase, tmnxPasswordReqSpecialChar and
tmnxPasswordReqNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Maximum Credits LowerCase (/Complexity Rules) |
| passwordCreditsNumeric |
The value of tmnxPasswordCreditsNumeric specifies the maximum credit
for having digits in your password. Please see
tmnxPasswordMinLength for an explanation of how password credits work.
A value of zero (0) indicates no credits will be given for having
digits in your password.
This field can only be set to non-zero if tmnxPasswordReqLowerCase,
tmnxPasswordReqUpperCase, tmnxPasswordReqSpecialChar and
tmnxPasswordReqNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Maximum Credits Numeric (/Complexity Rules) |
| passwordCreditsSpecialChar |
The value of tmnxPasswordCreditsSpecialChar specifies the maximum
credit for having special characters in your password. Please see
tmnxPasswordMinLength for an explanation of how password credits work.
A value of zero (0) indicates no credits will be given for having
special characters in your password.
This field can only be set to non-zero if tmnxPasswordReqLowerCase,
tmnxPasswordReqUpperCase, tmnxPasswordReqSpecialChar and
tmnxPasswordReqNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Maximum Credits Special Character (/Complexity Rules) |
| passwordCreditsUpperCase |
The value of tmnxPasswordCreditsUpperCase specifies the maximum credit
for having uppercase characters in your password. Please see
tmnxPasswordMinLength for an explanation of how password credits work.
A value of zero (0) indicates no credits will be given for having
uppercase characters in your password.
This field can only be set to non-zero if tmnxPasswordReqLowerCase,
tmnxPasswordReqUpperCase, tmnxPasswordReqSpecialChar and
tmnxPasswordReqNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Maximum Credits UpperCase (/Complexity Rules) |
| passwordHealthCheckInterval |
The value of passwordHealthCheckInterval specifies the polling
interval for Radius servers configured in tmnxRadiusServerTable
and the 'TacPlus' servers configured in tmnxTacPlusServerTable.
type=int default=30 minimum=6 maximum=1500 Displayed(tab/group)=Health Check Interval (/Properties) |
| passwordHistory |
The value of tmnxPasswordHistory specifies the number of old passwords
of the user that will be remembered. A new password must not be the
same as any remembered old password.
A value of zero (0) indicates no password history will be kept, meaning
a new password will only be matched against the current user password.
type=int default=0 minimum=0 maximum=20 Displayed(tab/group)=Password History (/Properties) |
| passwordMaxRepeatedChars |
The value of tmnxPasswordMaxRepeatedChars specifies the maximum number
of times the same character can be used consecutively in the
password.
A value of zero (0) indicates this check is disabled.
type=int default=0 minimum=0 maximum=8 Displayed(tab/group)=Maximum Number Of Times Character Can Used Consecutively (/Complexity Rules) |
| passwordMinAge |
The value of tmnxPasswordMinAge specifies the number of seconds
required between two consecutive password changes.
Among other this will prevent the user from flooding the password
history in an attempt to reuse his current password.
type=int default=600 minimum=0 maximum=86400 units=seconds Displayed(tab/group)=Password Minimum Age (/Properties) |
| passwordMinChange |
The value of tmnxPasswordMinChange specifies the minimum number of
characters in the new password that must not be present in the old
password. This is calculated using the Levenshtein distance algorithm.
In addition, if 1/2 of the characters in the new password are different
then the new password will be accepted anyway.
type=int default=5 minimum=1 maximum=20 Displayed(tab/group)=Password Minimum Change (/Properties) |
| passwordReqLowerCase |
The value of tmnxPasswordReqLowerCase specifies the minimum number of
lowercase characters that must be present in your password.
A value of zero (0) indicates no lowercase characters are required.
This field can only be set to non-zero if tmnxPasswordCreditsLowerCase,
tmnxPasswordCreditsUpperCase, tmnxPasswordCreditsSpecialChar and
tmnxPasswordCreditsNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Minimum Number Of LowerCase Characters (/Complexity Rules) |
| passwordReqNumCharClass |
The value of tmnxPasswordReqNumCharClass specifies the minimum number
of distinct kind of characters (uppercase, lowercase, digit or special)
that must be present in your password.
A value of zero (0) indicates this check is disabled.
type=int default=0 minimum=0 maximum=4 Displayed(tab/group)=Minimum Number Of Distinct Kind Of Characters (/Complexity Rules) |
| passwordReqNumeric |
The value of tmnxPasswordReqSpecialChar specifies the minimum number of
special characters that must be present in your password.
A value of zero (0) indicates no digits are required.
This field can only be set to non-zero if tmnxPasswordCreditsLowerCase,
tmnxPasswordCreditsUpperCase, tmnxPasswordCreditsSpecialChar and
tmnxPasswordCreditsNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Minimum Number Of Numeric (/Complexity Rules) |
| passwordReqSpecialChar |
The value of tmnxPasswordReqNumeric specifies the minimum number of
digits that must be present in your password.
A value of zero (0) indicates no digits are required.
This field can only be set to non-zero if tmnxPasswordCreditsLowerCase,
tmnxPasswordCreditsUpperCase, tmnxPasswordCreditsSpecialChar and
tmnxPasswordCreditsNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Minimum Number Of Special Characters (/Complexity Rules) |
| passwordReqUpperCase |
The value of tmnxPasswordReqUpperCase specifies the minimum number of
uppercase characters that must be present in your password.
A value of zero (0) indicates no uppercase characters are required.
This field can only be set to non-zero if tmnxPasswordCreditsLowerCase,
tmnxPasswordCreditsUpperCase, tmnxPasswordCreditsSpecialChar and
tmnxPasswordCreditsNumeric are all set to zero.
type=int default=0 minimum=0 maximum=10 Displayed(tab/group)=Minimum Number Of UpperCase Characters (/Complexity Rules) |
| Overridden Properties | |
|---|---|
| id |
ID
minimum=1 maximum=65535 |
| Properties inherited from policy.PolicyObject |
|---|
| description, displayedName, globalPolicy, id, isLocal, policyType, siteId, siteName, templateObject |
| Properties inherited from ManagedObject |
|---|
| actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed |