Is your feature request related to a problem? Please describe.
The password_policy module has the ability to configure all things but the lockout_duration parameter.
It would also be nice to control the sys db systemauth.disablemanualunlock value true via same method
Describe the solution you'd like
Allow setting of this lockout_duration parameter within the password_policy module
A similar lockout_reset parameter which would allow the duration value to be used, as now the account would be auto-unlocked after that duration.
bigip_password_policy:
provider: "{{ f5_provider `}}"
policy_enforcement: true
min_length: 16
min_duration: 30
max_duration: 180
expiration_warning: 14
max_login_failures: 3
password_memory: 25
required_lowercase: 2
required_uppercase: 2
required_numeric: 2
required_special: 2
lockout_duration: 300 # new parameter
lockout_reset: true # new parameter
Describe alternatives you've considered
Done via bigip_command module manually
bigip_command:
provider: "{{ f5_provider }}"
commands:
- modify auth password-policy lockout-duration 300
- modify sys db systemauth.disablemanualunlock value true
Additional context
Is your feature request related to a problem? Please describe.
The password_policy module has the ability to configure all things but the lockout_duration parameter.
It would also be nice to control the
sys db systemauth.disablemanualunlock value truevia same methodDescribe the solution you'd like
Allow setting of this lockout_duration parameter within the password_policy module
A similar lockout_reset parameter which would allow the duration value to be used, as now the account would be auto-unlocked after that duration.
Describe alternatives you've considered
Done via bigip_command module manually
Additional context