You configure password policy and lockout policy settings on the Management vCenter Server instance in Region A. After you configure the settings, they are populated for the entire vsphere.local domain and all regions.

Procedure

  1. In a Web browser, log in to vCenter Server by using the vSphere Client.
    Setting Value
    URL https://sfo01m01vc01.sfo01.rainpole.local/ui
    User name administrator@vsphere.local
    Password vsphere_admin_password
  2. Configure the password policies.
    1. From the Home menu of the vSphere Client, click Administration.
    2. Under Single Sign-On, click Configuration.
    3. On the Policies tab, under Password policy, click Edit.
    4. In the Edit password policies dialog box, configure the settings and click Save.

      Configuration ID

      Setting

      Value

      NIST80053-VI-VC-CFG-00421

      Maximum lifetime

      60

      NIST80053-VI-VC-CFG-00410

      Minimum length

      15
  3. Configure the lockout policies.
    1. On the Policies tab, click Lockout Policy and click Edit.
    2. In the Edit lockout policies dialog box, configure the settings and click Save.

      Configuration ID

      Setting

      Value

      NIST80053-VI-VC-CFG-00436

      Maximum number of failed login attempts

      3

      NIST80053-VI-VC-CFG-00434

      Time interval between failuresper

      900 Seconds

      NIST80053-VI-VC-CFG-00435

      Unlock time

      0 seconds