Table of Contents
Advertisement
Foundry Switch and Router Installation and Configuration Guide
4.
Enter no password at the prompt. (You cannot abbreviate this command.) This command will cause the
device to bypass the system password check.
5.
Enter boot system flash primary at the prompt.
6.
After the console prompt reappears, assign a new password.
Displaying the SNMP Community String
If you want to display the SNMP community string, enter the following commands:
BigIron(config)# enable password-display
BigIron(config)# show snmp server
The enable password-display command enables display of the community string, but only in the output of the
show snmp server command. Display of the string is still encrypted in the startup-config file and running-config.
Enter the command at the global CONFIG level of the CLI.
Disabling Password Encryption
When you configure a password, then save the configuration to the Foundry device's flash memory, the password
is also saved to flash as part of the configuration file. By default, the passwords are encrypted so that the
passwords cannot be observed by another user who displays the configuration file. Even if someone observes the
file while it is being transmitted over TFTP, the password is encrypted.
NOTE: You cannot disable password encryption using the Web management interface.
If you want to remove the password encryption, you can disable encryption by entering the following command:
BigIron(config)# no service password-encryption
Syntax: [no] service password-encryption
Setting Up Local User Accounts
You can define up to 16 local user accounts on a Foundry device. User accounts regulate who can access the
management functions in the CLI using the following methods:
•
Telnet access
•
Web management access
•
SNMP access
NOTE: Local user accounts are not supported on the FastIron Workgroup Layer 2 Switch or the non-octal
NetIron.
Local user accounts provide greater flexibility for controlling management access to Foundry devices than do
management privilege level passwords and SNMP community strings. You can continue to use the privilege level
passwords and the SNMP community strings as additional means of access authentication. Alternatively, you can
choose not to use local user accounts and instead continue to use only the privilege level passwords and SNMP
community strings. Local user accounts are backward-compatible with configuration files that contain privilege
level passwords. See "Setting Passwords for Management Privilege Levels" on page 3-10.
If you configure local user accounts, you also need to configure an authentication-method list for Telnet access,
Web management access, and SNMP access. See "Configuring Authentication-Method Lists" on page 3-47.
For each local user account, you specify a user name. You also can specify the following parameters:
•
A password
•
A management privilege level, which can be one of the following:
•
Super User level – Allows complete read-and-write access to the system. This is generally for system
administrators and is the only privilege level that allows you to configure passwords. This is the default.
3 - 12
December 2000
- Quick Links:
- Configuring Ip Addresses
Hide quick links:
Advertisement
Chapters
Table of Contents
