Password Pane

Getting there

From the password pane, you can configure both traditional password authentication and keyboard interactive authentication.

Note: Items on this pane can be configured globally or as part of a subconfiguration.

Password authentication

 

Allow

When Password authentication using keyboard interactive is not selected, the server allows only traditional password authentication.

When Password authentication using keyboard interactive is selected, the server allows both traditional password authentication and keyboard interactive authentication.

 

Require

When Password authentication using keyboard interactive is not selected, the server requires traditional password authentication.

When Password authentication using keyboard interactive is selected, the server requires keyboard interactive authentication.

 

Deny

Denies both password authentication and keyboard interactive authentication, regardless of whether Password authentication using keyboard interactive is selected.

Note: When Password authentication using keyboard interactive is not selected, the settings below apply only to traditional password authentication; when it is selected, these settings also apply to keyboard interactive authentication.

 

Number of password attempts

If the client is configured to allow a larger number of attempts, the client user sees the larger number of prompts, but the value specified here sets the actual limit.

If the client is configured to allow a smaller number of attempts, the client sets the actual limit.

 

Delay between tries (seconds)

Sets the number of seconds the server should wait to send between prompts.

 

Permit empty passwords

Empty passwords must also be supported in your Windows Group Policy configuration.

 

Allow password change

Specifies whether users are allowed to change their password.

Related Topics

Configure Password User Authentication

Configure Keyboard Interactive User Authentication