Skip to main content
A newer release of this product is available.

security login role config reset

Suggest changes

Reset RBAC characteristics supported on releases later than Data ONTAP 8.1.2

Availability: This command is available to cluster administrators at the advanced privilege level.


The security login role config reset command resets the following role based access control (RBAC) characteristics to their default values. The system prompts you to run this command if you revert to Data ONTAP 8.1.2 or earlier. If you do not reset these characteristics, the revert process will fail.

  • Minimum number of special characters required in password ("0")

  • Password-expiration time, in days ("unlimited")

  • Whether the password must be changed at the initial login ("disabled")

  • Maximum number of failed login attempts permitted before the account is locked out ("0")

  • Number of days that the user account is locked out after the maximum number of failed login attempts is reached ("0")


The following command resets the above mentioned RBAC characteristics of all cluster and Vserver roles to their default values.

cluster1::> security login role config reset