Managing the local database user accounts
User add, change, and delete operations are subject to the subset rule: an admin with ADlist 0- 1 0 cannot
perform operations on an admin, user, or any role with an ADlist 1 1-25. The user account being changed
must have an ADlist that is a subset of the account that is making the change.
About the default accounts
Fabric OS provides the following predefined accounts in the local switch user database. The password for
all default accounts should be changed during the initial installation and configuration for each switch.
Table 1 1
lists default local user accounts.
Table 1 1
Default local user accounts
Account
name
admin
factory
root
user
Defining local user accounts
In addition to the default administrative and user accounts, Fabric OS supports up to 252 user-defined
accounts in each logical switch (domain). These accounts expand your ability to track account access and
audit administrative activities.
The following procedures can be performed on local user accounts. Administrators can act on another
account only if that account has an Admin Domain list that is a subset of the administrator.
To display account information:
1.
Connect to the switch and log in using an admin account.
2.
Enter the appropriate show operands for the account information you want to display:
• userConfig
• userConfig
• userConfig
• userConfig
specified admindomain_ID
Role
Admin
domain
Admin
AD0-255
home: 0
Factory
AD0-255
home: 0
Root
AD0-255
home: 0
User
AD0
home: 0
show -a to show all account information for a logical switch
--
show -b to show all backup account information for a logical switch
--
show username to show account information for the specified account
--
showad -a admindomain_ID to show all accounts permitted to select the
--
Description
Most commands have observe-modify permission.
Reserved.
Reserved.
Most commands have observe-only permission.
Fabric OS 6.1.1 administrator guide
61