Cisco OL-5742-01 User Manual

Chapter 18 Configuring SGM Security

Configuring SGM User-Based Access

18-12

Cisco Signaling Gateway Manager User Guide

OL-5742-01

Step 5

(Optional) SGM keeps track of the date and time each user last logged in. You can
configure SGM to disable a user’s security authentication automatically after a
specified number of days of inactivity. To do so, enter the following command:

# ./sgm inactiveuserdays number-of-days

where number-of-days is the number of days a user can be inactive before SGM
disables the user’s authentication. SGM does not delete the user from the
authentication list, SGM only disables the user’s authentication.

The valid range is 1 day to an unlimited number of days. There is no default
setting.

To re-enable the user’s authentication, use the sgm enableuser command.

This function is disabled by default. If you do not specify the
sgm inactiveuserdays command, user accounts are never disabled as a result of
inactivity.

If you have enabled this function and you want to disable it (that is, to prevent
SGM from automatically disabling user accounts as a result of inactivity), enter
the following command:

# ./sgm inactiveuserdays clear

Step 6

(Optional) If sgm authtype is set to local, you can configure SGM to force users
to change their passwords after a specified number of days.

To configure SGM to force users to change their passwords after a specified
number of days, enter the following command:

# ./sgm passwordage number-of-days

where number-of-days is the number of days allowed before users must change
their passwords.

The valid range is 1 day to an unlimited number of days. There is no default
setting.

This function is disabled by default. If you do not specify the sgm passwordage
command, users never need to change their passwords.