Header Only - DO NOT REMOVE - Extreme Networks

Automatically expiring login credentials on extreme switches


is there any way if username/password can automatically expire for specific duration. on extreme switches

5 replies

Userlevel 4
You can set a password max age for a particular account.

# configure account "user" password-policy max-age
none No maximum age enforced for password
Maximum age of password, between 1 and 365 days
this is applicable for all extreme switches ?
Userlevel 7
Neeraj singh wrote:

this is applicable for all extreme switches ?

The command Kevin shared is for all EXOS switches.
Userlevel 4
My apology.

I think this is not what you are looking for. More clarity here. The command previousely mentioned will expire an existing password in a specified period of time but then prompt a user to change a new password. The user will be able to continue to login with the new password.

If you want to invalidate a password, I think a timer-based UPM script would be an option.
Userlevel 7
Kevin Kim wrote:

My apology.

I think this is not what you are looking for. More clarity here. The command previousely mentioned will expire an existing password in a specified period of time but then prompt a user to change a new password. The user will be able to continue to login with the new password.

If you want to invalidate a password, I think a timer-based UPM script would be an option.

Moving to RADIUS mgmt-access is another good way to do this. If the credentials on the server-side have expired, they aren't valid on the switch until the user resets their password (at least with Active Directory).

Reply