Displaying the snmp community string, Specifying a minimum password length, Local user accounts – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

1. Start a CLI session over the serial interface to the device.
2. Reboot the device.
3. At the initial boot prompt at system startup, enter b to enter the boot monitor mode.
4. Enter no password at the prompt. (You cannot abbreviate this command.) This command will cause

the device to bypass the system password check.

5. Enter boot system flash primary at the prompt. On ICX 6430 and ICX 6450 devices, enter

boot_primary.

6. After the console prompt reappears, assign a new password.

Displaying the SNMP community string

If you want to display the SNMP community string, enter the following commands.

device(config)#enable password-display

device#show snmp server

The enable password-display command enables display of the community string in the output of the
show snmp server command. Display of the string is still encrypted in the startup-config file and
running-config. When the enable password-display command is configured, the user password and
snmp community string are encrypted in the show run command output. Enter the command at the
global CONFIG level of the CLI.

Specifying a minimum password length

By default, the Brocade device imposes no minimum length on the Line (Telnet), Enable, or Local
passwords. You can configure the device to require that Line, Enable, and Local passwords be at least
a specified length.

For example, to specify that the Line, Enable, and Local passwords be at least 8 characters, enter the
following command.

device(config)#enable password-min-length 8

Syntax: enable password-min-length number-of-characters

The number-of-characters can be from 1 - 48.

Local user accounts

You can define up to 32 local user accounts on a Brocade device. User accounts regulate who can
access the management functions in the CLI using the following methods:

• Telnet access
• SNMP access
• SSH access

Local user accounts provide greater flexibility for controlling management access to Brocade devices
than do management privilege level passwords and SNMP community strings of SNMP versions 1 and
2. You can continue to use the privilege level passwords and the SNMP community strings as additional
means of access authentication. Alternatively, you can choose not to use local user accounts and
instead continue to use only the privilege level passwords and SNMP community strings. Local user
accounts are backward-compatible with configuration files that contain privilege level passwords. Refer
to

Setting passwords for management privilege levels

on page 32.

Displaying the SNMP community string

FastIron Ethernet Switch Security Configuration Guide

35

53-1003088-03