beautypg.com

To recover user-defined accounts, Changing an account password – HP Brocade 4Gb SAN Switch for HP BladeSystem p-Class User Manual

Page 45

background image

Fabric OS 5.0.0 procedures user guide

45

2.

Enter the following command:

userConfig --change

username [-r rolename] [-d description] [-e yes | no]

Accounts with the admin role can change information for accounts that have lesser permissions. Accounts

with the user role cannot.

To recover user-defined accounts

If a backup account exists (in secure mode), you can recover it with the following command:

userConfig --recover

The following conditions apply to recovering user accounts:

Only accounts with admin or higher roles can recover accounts.

The attributes in the backup database replace the attributes in the current account database.

An event is stored in the system message log indicating that accounts have been recovered.

Changing an account password

At each level of account access, you can change passwords for that account and accounts that have

lesser privileges.

If you log in to a user account, you can only change that account’s password.

If you log in to an admin account, you can change admin and user passwords. You must provide the old

password when the account being changed has the same or higher privileges than the current login

account. For example, when logged in as admin, you need admin passwords to change passwords for

admin accounts (except when you change the default user account password at login), but you do not

need user passwords to change passwords for user accounts.

A new password must have at least one character different than the old password. The following rules

also apply to passwords:

You cannot change passwords using SNMP.

where:

username

An option that changes the account attribute for username. The account

must already exist.

-r rolename

An option that changes the role: either admin or user in nonsecure mode;

admin, user, or nonfcsadmin in secure mode.

An account cannot change its own role.

You can only change the role name of a user-defined account with a

lower level of authorization.

-d description

An option: the account description. The description field can be up to 40

printable ASCII characters long. The following characters are not allowed:

asterisk (‘), quotation mark (“), exclamation point (!), semi-colon (;), and

colon (:).

You can only change the description of a user-defined account with a

lower level of authorization.

-e

Optionally, enter

yes

to enable the account or enter

no

to disable it. If

you disable an account, all active CLI sessions for that account are

logged out. You can enable or disable user-defined or default accounts.

See also other documents in the category HP Storage: