TIC Commands 445User GuidelinesRelevant to local user passwords, line passwords, and enable passwords.For tracking purposes, passwords are not deleted from the history database after becoming ’irrelevant’. Aperiod of time that the password cannot be changed (according to the history table) must be configured.By increasing a password ’s relevance for tracking purposes by a number of days, it may cause theirrelevant password to be relevant again.ExampleThe following example configures the number of days that a password is relevant for tracking itspassword history to 120.passwords lockoutThe passwords lockout Global Configuration mode command sets the number of failed login attemptsbefore a user account is locked. Use the no form of this command to remove this condition.Syntax• passwords lockout number• no passwords lockout• number — Number of failed login attempts before the user account is locked. (Range: 1 - 5)Default ConfigurationNo locked user account due to failed login attempts.Command ModeGlobal Configuration mode.User Guidelines• Relevant to local user passwords, line passwords, and enable passwords.• The user account can still access the local console.• A different administrator, with privilege level 15, can release a locked account by using the setusername active command.ExampleThe following example configures the number of failed login attempts before a user account is locked to 3.Console(config)# passwords history hold-time 120Console(config)# passwords lockout 3book.book Page 445 Thursday, December 18, 2008 7:40 PM