Avaya G250 Administration page 614

FIPS
29. Change the password of the default Crypto-officer and of all existing CLI users to comply
with the requirement for a minimum secret length of 8 characters.
- Use the username command.
G350-N(super)# Username root password root_fips access-type admin
User account modified.
G350-001(super)#
30. Use the username command to define new additional operators for Crypto-officer, User,
and Read-Only User roles, as required.
G350-N(super)# username admin password admin_password access-type admin
User account added
G350-N(super)# username readwrite password rw_password access-type
read-write
User account added
G350-N(super)# username readonly password ro_password access-type
read-only
User account added
31. Use the show username command to verify successful definition of CLI users.
G350-N(super)# show username
User
account
--------------------------------
root
admin
readwrite
readonly
32. Remove unnecessary OSPF peers.
a. Use the show ip ospf interfaces to list all interfaces with OSPF activated.
b. If there are interfaces with OSPF activated, use the no ip ospf
message-digest-key command to delete the OSPF MD5 key in the context of the
interface.
33. Configure primary and secondary RADIUS servers.
G350-N(super)# Set radius authentication enable
Done!
G350-N(super)# set radius authentication server 200.200.200.20 primary
Done!
G350-N(super)# set radius authentication secret fips_test1
Done!
614 Administration for the Avaya G250 and Avaya G350 Media Gateways
Access Account
level type
----------- ----------
admin local
admin local
read-write local
read-only local
Active Authent.
method
------ ----------
yes password
yes password
yes password
yes password