Skip to main content
NetApp Knowledge Base

What are LoginGraceTime and MaxStartups used for?

  1. Last updated
  2. Save as PDF
Views:
179
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core
Last Updated:

Applies to

  • ONTAP 9
  • SSH(Secure Shell)

Answer

  • Both LoginGraceTime and MaxStartups are configuration parameters used in the context of SSH server settings.
  • LoginGraceTime defines the amount of time a user has to authenticate themselves successfully after initiating an SSH connection.The default value on ONTAP 9 is 30 seconds.
  • MaxStartups determines the maximum number of concurrent unauthenticated connections that the SSH server will allow. It sets limits on the number of simultaneous connection attempts that can be made to the SSH server before authentication is completed.
    • When the number of unauthenticated connections reaches the specified limit, the server will start rejecting new connection attempts until existing connections are authenticated or closed. 
    • The default value on ONTAP 9 is 10:30:60. Which means when the number of connections reaches 10, it starts rejecting connections, but not all of them. Subsequent connections have a 30% chance of being rejected. When the number of connections reaches 60, all subsequent connections are rejected.

Note: Changing values of these two parameters does not require restarting ONTAP.

Additional Information

additionalInformation_text

 

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.