Managing Serial Console Sign-In Attempts
By default, serial console sign-in attempts is set to 10. If an incorrect password is entered 11 times, the unlock key is shredded, preventing any further access to the serial console menu. You can change the number of incorrect password attempts that are allowed on the device.
Enter the passphrase to unlock the screen: ****
*** 1 failed attempt out of 4 allowed attempts. Once failed attempt reach 4, data access will be lost. ***
Error: The passphrase is incorrect!*** Next failed attempt will shred the unlock key and data access to this device will be lost. Used 3 attempts out 4 allowed attempts. ***
Error: The passphrase is incorrect!If the device unlock key is shredded, you can recover the device using the recover key. See Managing Roving Edge Infrastructure Device Master Keys.
-
Using terminal emulation to display the serial console, select the Advanced Menu > Network Management menu option. The following option appears:
No. of attempts before key is shredded (Default:10)
-
Select this option. The following option appears:
Enter number of unlock attempt allowed (between 3 and 100)
- Enter the number of attempts the user can try to unlock the device before they are prevented from any further tries. The number of attempts can be between 3 and 100. If you don't provide a value, the default number 10 is used.
You can test this feature after specifying the number by waiting for the screen timeout (900 seconds) to occur and the screen becomes locked. Try logging in using an incorrect password and view the result. Make sure you don't exceed your number of tries allowed, or you will lose your passphrase.