Product Documentation

Database Administrator's Guide

Previous Topic

Next Topic

User ID and Logon Limits

The Server Administrator can set several system-wide limits and User ID overrides for those limits. The number of consecutive logon failures, the delay after failure limit is reached, and a minimum time between logons can all be set system-wide with configuration keywords. These settings can be overridden for each User ID using the Server Administration utility, ctadmn, which can also set beginning and ending dates for each User ID. These features are detailed below and in FairCom DB Server Administrator Utility.

The Server Administrator can set an optional limit on the number of consecutive failed logons that will cause subsequent logon attempts to fail for a specified time interval. The default logon limit is zero (0), which implies the feature is not active. Logons are blocked for 5 minutes by default after exceeding the limit. A logon during this period returns LRSM_ERR (584). Set the logon limit with LOGON_FAIL_LIMIT <logon limit> in the configuration file. The length of time the logons are blocked is set by LOGON_FAIL_TIME <minutes> in the configuration file.

The FairCom Server can be configured to require user logons within a given period. This ensures all users log on “at-least-once” within the defined time (e.g., at least once a week). If the time expires for a specific user, the server deactivates the user’s profile, preventing access to the server. The Server Administrator, or other ADMIN group user, must reset the user’s account once the time limit has elapsed. To activate this feature, add the following keyword in the server configuration file, ctsrvr.cfg, where <value> is the period in minutes during which the user must logon: