Security
Make BVD more secure by configuring the values in the Security page of the configuration wizard.
-
Login Delay
-
The minimum time interval (in milliseconds) between a user's consecutive logins. Users will not be able to log in again unless their last login dates back later than the specified login delay. The maximum are 5000 milliseconds.
Default:
2000
-
Login Attempts Allowed
-
Number of allowed login attempts before an error message is displayed. After the specified number of login attempts, the user profile will be locked for as long as specified in the User lock out time.
Default:
5
-
Lock Out Time
-
The length of time (in seconds) for which a user is locked out of BVD if the number of allowed login attempts is exceeded.
Default:
900
On Linux, the BVD and associated processes by default run under the root user account. You can change the user account that is associated with the processes to another user by checking the box Run as non-root user and specifying the following Non-Root User settings in the BVD configuration wizard.
The following processes are affected:
-
BVD processes
-
Operations Agent core processes (ovbbccb, ovcd, ovconfd)
Note: On Linux servers, non-root users cannot open ports in the range 0 to 1023. You must therefore specify ports above 1023 for the BVD web server.
Alternatively, you can use the Linux setcap
utility to set file capabilities that are extended attributes on the BVD web server process; for example: setcap 'cap_net_bind_service=+ep' /opt/HP/BVD/node/node
-
User Name
-
User account under which the processes will run. BVD will create the user account if it does not yet exist.
-
Group Name
-
Group account of the user under which the processes will run. BVD will create the group account if it does not yet exist.