Login Authentication Policy
The Login Authentication Policy tab of the Security Settings page provides the Session Timeout, Account Lockout, Account Disabling, Recent Login Information, and Custom Information settings. These settings take effect for both your account and the IAM users created using the account.
Only the administrator can configure the login authentication policy, and IAM users can only view the configurations. If an IAM user needs to modify the configurations, the user can request the administrator to perform the modification or grant the required permissions.
Session Timeout
Set the session timeout that will apply if you or users created using your account do not perform any operations within a specific period.
The timeout ranges from 15 minutes to 24 hours, and the default timeout is 1 hour.
Account Lockout
Set a duration to lock users out if a specific number of unsuccessful login attempts has been reached within a certain period. You cannot unlock your own account or an IAM user's account. Wait until the lock time expires.
The administrator can set the account lockout duration, maximum number of unsuccessful login attempts before the account is locked, and time for resetting the account lockout counter.
- Lockout duration: The value ranges from 15 to 30 minutes, and the default value is 15 minutes.
- Maximum number of unsuccessful login attempts: The value ranges from 3 to 10, and the default value is 5.
- Time for resetting the account lockout counter: The value ranges from 15 to 60 minutes, and the default value is 15 minutes.
Account Disabling
Set a validity period to disable IAM users if they have not accessed Huawei Cloud using the console or APIs within a certain period.
This option is disabled by default. The validity period ranges from 1 to 240 days.
If you enable this option, the setting will take effect only for IAM users created using your account. If an IAM user is disabled, the user can request the administrator to enable their account again.
Recent Login Information
Configure whether you want the system to display the previous login information after you log in. If incorrect login information is displayed on the Login Verification page, change your password immediately.
This option is disabled by default and can be enabled by the administrator.
Custom Information
Set custom information that will be displayed upon successful login. For example, enter the word Welcome.
This option is disabled by default and can be enabled by the administrator.
You and all the IAM users created using your account will see the same information upon successful login.
USB Key Certificate Expiration
To ensure service continuity, you can set a certificate expiration reminder to notify you of applying for a new USB key before the current one expires. The new USB key must be obtained within the certificate's validity time, or you will not be able to log in to the cloud platform after the current USB key expires. By default, you can receive a notification 10 days ahead of the expiration. You can set the notification time from 1 to 10 days.
This setting will be applied immediately for both your account and IAM users under your account.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot