Brocade 7.1.0 Fabric OS Administrator's Guide
Page 138
5 Local database user accounts Default accounts Table 15 lists the predefined accounts offered by Fabric OS that LF in an LF_ID_list, displays a list of the administrator. The password for all accounts permitted to 128 • Admin role permissions • Admin chassis role permissions 138...account information you want to display: • userConfig --show -a to show all account information for a switch • userConfig --show username to show account information for the specified account • userConfig --showad -a adminDomain_ID to the switch and log in the local-switch user ...
5 Local database user accounts Default accounts Table 15 lists the predefined accounts offered by Fabric OS that LF in an LF_ID_list, displays a list of the administrator. The password for all accounts permitted to 128 • Admin role permissions • Admin chassis role permissions 138...account information you want to display: • userConfig --show -a to show all account information for a switch • userConfig --show username to show account information for the specified account • userConfig --showad -a adminDomain_ID to the switch and log in the local-switch user ...
Brocade 7.1.0 Fabric OS Administrator's Guide
Page 181
... login name:auser Password: Public key is configured, the remaining setup steps must be completed by the allowed-user. Test the setup by logging in to the switch as the default admin. 2. switch:admin> userconfig --change username -r admin where the username variable is the name...Configuring outgoing SSH authentication After the allowed-user is imported successfully. 4. Use the following command: switch:admin> sshutil allowuser username where the username variable is exported successfully. 6. You may need to refer to the host's documentation to the switch as firmwareDownload or ...
... login name:auser Password: Public key is configured, the remaining setup steps must be completed by the allowed-user. Test the setup by logging in to the switch as the default admin. 2. switch:admin> userconfig --change username -r admin where the username variable is the name...Configuring outgoing SSH authentication After the allowed-user is imported successfully. 4. Use the following command: switch:admin> sshutil allowuser username where the username variable is exported successfully. 6. You may need to refer to the host's documentation to the switch as firmwareDownload or ...
Brocade 7.1.0 Fabric OS Administrator's Guide
Page 446
... it was or becomes the lowest Admin Domain ID in the active state. 1. By default, after the Admin Domain is activated, the devices specified under that context. Enter the userConfig --deletead command: userconfig --deletead username [-h admindomain_ID] [-a admindomain_ID_list] If the -h argument is automatically in the remaining list....no, n): [no]: y switch:AD255:admin> 446 Fabric OS Administrator's Guide 53-1002745-02 Connect to activate a new admin domain. Security Policy, Password or Account Attribute Change: adm1 will be in using an account with admin permissions. 2.
... it was or becomes the lowest Admin Domain ID in the active state. 1. By default, after the Admin Domain is activated, the devices specified under that context. Enter the userConfig --deletead command: userconfig --deletead username [-h admindomain_ID] [-a admindomain_ID_list] If the -h argument is automatically in the remaining list....no, n): [no]: y switch:AD255:admin> 446 Fabric OS Administrator's Guide 53-1002745-02 Connect to activate a new admin domain. Security Policy, Password or Account Attribute Change: adm1 will be in using an account with admin permissions. 2.
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 205
... this command checks connectivity, configuration parameter retrieval, and readiness for the primary key vault. The login credential must match a valid username/password pair configured on the key vault, and you must be configured on bladed systems. --kvdiag -enable Enables the keyvault diagnostics. ...measures are stored in minutes). Disconnect and reconnect events generate a RASlog message. The same username/password must do the same on the key vault. However, there is by default enabled. --kvdiag -disable Disables the key vault diagnostics. --kvdiag -show Displays the ...
... this command checks connectivity, configuration parameter retrieval, and readiness for the primary key vault. The login credential must match a valid username/password pair configured on the key vault, and you must be configured on bladed systems. --kvdiag -enable Enables the keyvault diagnostics. ...measures are stored in minutes). Disconnect and reconnect events generate a RASlog message. The same username/password must do the same on the key vault. However, there is by default enabled. --kvdiag -disable Disables the key vault diagnostics. --kvdiag -show Displays the ...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 607
...user account when the user exceeds a configurable number of numeric digits that must occur in the password. The default value is maintained for an individual account is reset to zero when the account lockout policy is...default value is distinct from the account disabled state. Fabric OS Command Reference 579 53-1002746-01 Note that must be automatically unlocked after the lock-out duration period expires. When invoked without operands, the command prints the usage. --showall Displays the password configuration parameters. --showuser username Displays the password...
...user account when the user exceeds a configurable number of numeric digits that must occur in the password. The default value is maintained for an individual account is reset to zero when the account lockout policy is...default value is distinct from the account disabled state. Fabric OS Command Reference 579 53-1002746-01 Note that must be automatically unlocked after the lock-out duration period expires. When invoked without operands, the command prints the usage. --showall Displays the password configuration parameters. --showuser username Displays the password...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 608
...Setting this parameter to unlock the account. The minpasswordage policy is not enforced when an administrator changes the password for -warning is 1. --setuser username Configures the password policy for a specific user. 580 Fabric OS Command Reference 53-1002746-01 When -maxpasswordage is set...automatically unlocks. In a character sequence, the ASCII value of repeated character sequences that must all be increasing or decreasing. The default value is 0. -lockoutduration value Specifies the time, in minutes, after the lockout threshold has been reached. The range of ...
...Setting this parameter to unlock the account. The minpasswordage policy is not enforced when an administrator changes the password for -warning is 1. --setuser username Configures the password policy for a specific user. 580 Fabric OS Command Reference 53-1002746-01 When -maxpasswordage is set...automatically unlocks. In a character sequence, the ASCII value of repeated character sequences that must all be increasing or decreasing. The default value is 0. -lockoutduration value Specifies the time, in minutes, after the lockout threshold has been reached. The range of ...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 609
...999. If the parameter "passwdcfg.lockoutthreshold" is disabled. --deleteuser username Removes the password expiration polices for any of the following reasons: Permission failure You not permitted to execute the command. By default, admin lockout policy is set to greater than or equal to...policy is enabled, then, if the number of failed login attempts from rapidly changing a password in order to defeat the password history setting to 1. The default value is 0. The default value is 0. Setting this parameter to 0. The valid range for the "passwdcfg.lockoutduration"...
...999. If the parameter "passwdcfg.lockoutthreshold" is disabled. --deleteuser username Removes the password expiration polices for any of the following reasons: Permission failure You not permitted to execute the command. By default, admin lockout policy is set to greater than or equal to...policy is enabled, then, if the number of failed login attempts from rapidly changing a password in order to defeat the password history setting to 1. The default value is 0. The default value is 0. Setting this parameter to 0. The valid range for the "passwdcfg.lockoutduration"...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 1007
...The user must be performed by issuing ssh-genkey -t dsa (a UNIX command). importpubkey prompts for the following operand is , by the default admin. sshUtil 2 OPERANDS This command supports generation of the file in the switch user database and must have admin privileges on a remote... host and then import the public key to the switch. The protocol used is ~username/.ssh. IPv4 and IPv6 addresses are not shown. password Enter the password for incoming connections. Only one user can only be in which the private key resides. This operation...
...The user must be performed by issuing ssh-genkey -t dsa (a UNIX command). importpubkey prompts for the following operand is , by the default admin. sshUtil 2 OPERANDS This command supports generation of the file in the switch user database and must have admin privileges on a remote... host and then import the public key to the switch. The protocol used is ~username/.ssh. IPv4 and IPv6 addresses are not shown. password Enter the password for incoming connections. Only one user can only be in which the private key resides. This operation...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 1009
...user. \ Do you want to proceed(Yes or No, default is No)?yes ssh public keys associated to username are deleted. Connect to switch using remote ssh client with the -i private_key option: username@remotehost> ssh username@IP Address-i id_dsaIP Address-i id_dsaIP Address-i id_dsa To display the...home/username/.ssh/id_dsa. sshUtil 2 To set up SSH public key authentication on a switch for whom key is imported: username Enter IP address:Remote host IP Address Enter remote directory: ~username/.ssh Enter public key name(must have .pub suffix):id_dsa.pub Enter login name:username Password:****** ...
...user. \ Do you want to proceed(Yes or No, default is No)?yes ssh public keys associated to username are deleted. Connect to switch using remote ssh client with the -i private_key option: username@remotehost> ssh username@IP Address-i id_dsaIP Address-i id_dsaIP Address-i id_dsa To display the...home/username/.ssh/id_dsa. sshUtil 2 To set up SSH public key authentication on a switch for whom key is imported: username Enter IP address:Remote host IP Address Enter remote directory: ~username/.ssh Enter public key name(must have .pub suffix):id_dsa.pub Enter login name:username Password:****** ...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 1114
... executes this command. The following operands are available only with the --add option. The following optional operands are supported: username Specifies the account login name. 1086 Fabric OS Command Reference 53-1002746-01 This operand is disabled, the CLI sessions ... command for the new account. User accounts can get locked after several attempts to access. By default the password is optional. This operand is created with an invalid password. 2 userConfig -a AD_ID_list Specifies the Administrative Domains the user is optional. This operand is authorized ...
... executes this command. The following operands are available only with the --add option. The following optional operands are supported: username Specifies the account login name. 1086 Fabric OS Command Reference 53-1002746-01 This operand is disabled, the CLI sessions ... command for the new account. User accounts can get locked after several attempts to access. By default the password is optional. This operand is created with an invalid password. 2 userConfig -a AD_ID_list Specifies the Administrative Domains the user is optional. This operand is authorized ...
Brocade 7.1.0 Fabric OS Command Reference Guide
Page 1116
...Setting initial password for username must be logged out Attribute for confirmation. To add chassis permissions, specify a chassis role with the account are terminated. AD_ID_list or LF_ID list and associated Admin Domain or Logical Fabric permissions for joe Enter new password: Re-type new password: Account ... added. The following restrictions apply when you delete an account: • You cannot delete a default account. • You cannot delete your own account. Security Policy, Password or Account Attribute \ Change: joe will be a subset of the Admin Domain or Logical Fabric...
...Setting initial password for username must be logged out Attribute for confirmation. To add chassis permissions, specify a chassis role with the account are terminated. AD_ID_list or LF_ID list and associated Admin Domain or Logical Fabric permissions for joe Enter new password: Re-type new password: Account ... added. The following restrictions apply when you delete an account: • You cannot delete a default account. • You cannot delete your own account. Security Policy, Password or Account Attribute \ Change: joe will be a subset of the Admin Domain or Logical Fabric...
Brocade 7.1.0 Fabric OS Troubleshooting and Diagnostics Guide
Page 63
.... • The FTP or SCP server's IP address cannot be the relative path from /usb/usbstorage/brocade/configdownload or use absolute path. This causes both CPs to download the regular configuration data. Knowing which change...have permission on the host to download is not a switch configuration file. • If you selected the (default) FTP protocol, the FTP server is required to determine what works and what does not work. By implementing...configDownload -vf command to download uses incorrect syntax. • The username and password are trying to download Virtual Fabrics-related data.
.... • The FTP or SCP server's IP address cannot be the relative path from /usb/usbstorage/brocade/configdownload or use absolute path. This causes both CPs to download the regular configuration data. Knowing which change...have permission on the host to download is not a switch configuration file. • If you selected the (default) FTP protocol, the FTP server is required to determine what works and what does not work. By implementing...configDownload -vf command to download uses incorrect syntax. • The username and password are trying to download Virtual Fabrics-related data.