Xerox 4590 EPS-10912 User Manual

1 8

Security Guide

Login Attempts Allowed

DocuSP has provided a means to lockout users after reaching the
maximum number of consecutive attempts. Once this is done, the
user will need to apply (reset) a security policy and reboot the
system.

The number of failed attempts and enable/disable is configurable
via the Password Policy screen. When enabled, login attempts
can be set from 1-6 attempts before the user is locked out. This
function will only apply to failed login attempts via the DocuSP UI
and does not apply to the root (su) user.

How to Enable/Disable Login Attempts

•

From the Setup menu select [Users and Groups]

•

From the Policies drop down menu select [Password]

•

Enable/Disable Login Attempts from the Password Policies
window. The default setting is “Disable”.

Password Expiration

The System Administrator can set a password expiration via the
Solaris Management Control.

NOTE: SMC (Solaris Management Control) has replaced
AdminTool. AdminTool has been retired in Solaris 10.

1. Open a terminal window and login as root
2. Type: smc &
3. Go to: System Configuration -> Users -> User Accounts->

<select user> -> Password Options tab

4. Enter values in the drop down menus associated with each

password expiration parameter.

The DocuSP UI does not handle password expiration. Thus,
DocuSP will not prompt the user to enter a new password if his/
her password has expired. Instead, a message is posted
indicating unknown user name or password. It is up to the
customer to determine that the password has expired. To do so,
the customer should open a terminal window and attempt to login
as the user in question. If the password has expired, the system
will prompt for the user to enter a new password.

Security Logs

User Activity on the System

When the High security profile is enabled, the Solaris Basic
Security Module (BSM) is activated.