beautypg.com

Disabling password encryption, Specifying a minimum password length, Setting up local user accounts – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 38

background image

20

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Setting up local user accounts

1

The enable password-display command enables display of the community string, but only in the
output of the show snmp server command. Display of the string is still encrypted in the startup
configuration file and running configuration. Enter the command at the global CONFIG level of the
CLI.

Disabling password encryption

When you configure a password, then save the configuration to the device’s flash memory, the
password is also saved to flash as part of the configuration file. By default, the passwords are
encrypted so that the passwords cannot be observed by another user who displays the
configuration file. Even if someone observes the file while it is being transmitted over TFTP, the
password is encrypted.

If you want to remove the password encryption, you can disable encryption by entering the following
command.

Brocade(config)# no service password-encryption

Syntax: [no] service password-encryption

Specifying a minimum password length

By default, the device imposes no minimum length on the Line (Telnet), Enable, or Local
passwords. You can configure the device to require that Line, Enable, and Local passwords be at
least a specified length.

For example, to specify that the Line, Enable, and Local passwords be at least 8 characters, enter
the following command.

Brocade(config)# enable password-min-length 8

Syntax: [no] enable password-min-length number-of-characters

The number-of-characters can be from 1 – 48.

Setting up local user accounts

You can define up to 32 local user accounts on a Brocade device. User accounts regulate who can
access the management functions in the CLI using the following methods:

Telnet access

SSH access

Console access

Web management access

SNMP access

Local user accounts provide greater flexibility for controlling management access to the Brocade
device than do management privilege level passwords and SNMP community strings of SNMP
versions 1 and 2. You can continue to use the privilege level passwords and the SNMP community
strings as additional means of access authentication. Alternatively, you can choose not to use local
user accounts and instead continue to use only the privilege level passwords and SNMP
community strings. Local user accounts are backward-compatible with configuration files that
contain privilege level passwords. Refer to

“Setting passwords for management privilege levels”

.

See also other documents in the category Brocade Computer Accessories: