ssh server authentication-retries
Syntax
ssh server authentication-retries times
undo ssh server authentication-retries
View
System view
Default level
3: Manage level
Parameters
times: Specifies the maximum number of authentication attempts for SSH users, in the range of 1 to 5.
Description
Use ssh server authentication-retries to set the maximum number of authentication attempts for SSH users.
Use undo ssh server authentication-retries to restore the default.
By default, the maximum number of authentication attempts for SSH users is 3.
You can set this limit to prevent malicious hacking of usernames and passwords.
This configuration takes effect only for the users at next login.
Authentication fails if the total number of authentication attempts (including both publickey and password authentication) exceeds the upper limit configured by the ssh server authentication-retries command.
If the authentication method of SSH users is password-publickey, the server first uses publickey authentication, and then uses password authentication to authenticate SSH users. The process is regarded as one authentication attempt.
Related commands: display ssh server.
Examples
# Set the maximum number of authentication attempts for SSH users to 4.
<Sysname> system-view [Sysname] ssh server authentication-retries 4