Hello, dear!
Good day to you!
Login security policies are configured to prevent unauthorized users from logging in to the system.
How to change the parameter of login
You can set the following parameters to enhance device login security:
Parameter | Description |
Password Rules | Indicates whether to enable the password rule. If this parameter is selected, you can set other parameters such as Change Password Upon First Login. |
Change Password Upon First Login | Indicates whether to change the password upon first login. |
Force Change Password upon Expiration | Indicates whether to force the user to change the password when the password expires. |
Min Password Length | Minimum length of a password. |
Account Lockout Duration (minutes) | Duration during which an account is locked. |
Account Lockout Threshold | Maximum number of password retries. If the number of password retries reaches the maximum, the account is locked. |
Account Lockout Interval (minutes) | Interval between two consecutive account locks. |
Password Validity Days | Password validity period, in days. The value ranges from 0 to 999. The default value 0 indicates that the password is permanently valid. |
Days Before User Is Notified About Expiration | Number of days in advance users are notified that their passwords are about to expire. |
How to configure the blocklist/trustlist of the IVS1800?
1. Log in to the operating system as the root user.
2. Back up the httpd.conf file.
cp -rpf /home/ivs_omu_portal/httpd/conf/httpd.conf /home/ivs_omu_portal/httpd/conf/httpd.bak
3. Edit the httpd.conf file.
vi /home/ivs_omu_portal/httpd/conf/httpd.conf
Modify the content between <Directory "/home/ivs_omu_portal/htdocs/public"> and </Directory>.
You can configure either the blocklist or trustlist. The trustlist is recommended.
Trustlist: Only trustlisted IP addresses can access the OMU portal.
Modify replace yellow of A code to B code
A:
#
# Controls who can get stuff from this server.
#
Order allow,deny
Allow from all
B:
Order deny,allow
Deny from all
Allow from x.x.x.x y.y.y.y (trustlisted IP addresses)
Blocklist: Blocklisted IP addresses cannot access the OMU portal.
Modify replace yellow of A code to C code
C:
Order allow,deny
Allow from all
Deny from x.x.x.x y.y.y.y (blocklisted IP addresses, in which x.x.x.x and y.y.y.y are the IP addresses of unauthorized sources found in the log file)
4. Save the modification and exit.
Run the /home/ivstool/bin/service.sh restart omuportal command to restart the OMU portal for the configuration to take effect.
If error 500 is displayed when you log in to the OMU portal after the restart, verify that the syntax of the added code is correct.
Of course, you can restore the backup file and reconfigure it: cp -rpf /home/ivs_omu_portal/httpd/conf/httpd.bak /home/ivs_omu_portal/httpd/conf/httpd.conf
This video describes how to configure a trustlist:
Best wishes!
