Security
116
System Management Guide
3HE 11018 AAAC TQZZA Edition: 01
3.10.2.1.6 Password Commands
password
Syntax password
Context config>system>security
Description This command enables the context to configure password management parameters.
admin-password
Syntax admin-password password [hash | hash2]
no admin-password
Context config>system>security>password
Description This command allows a user (with admin permissions) to configure a password which
enables a user to become an administrator.
This password is valid only for one session. When enabled, no authorization to TACACS+ or
RADIUS is performed and the user is locally regarded as an admin user.
The minimum length of the password is determined by the minimum-length command. The
complexity requirements for the password are determined by the complexity command.
For example:
file copy ftp://test:secret@131.12.31.79/test/srcfile cf3:\destfile
In this example, the user name “test” and password “secret” will not be sent to the AAA
servers (or to any logs). They will be replaced with “****”.
The no form of the command removes the admin password from the configuration.
Note: See the description for the enable-admin command. If the admin-password is
configured in the config>system>security>password context, then any user can enter
the admin mode by entering the enable-admin command and the correct admin password.
Note: The password argument of this command is not sent to the servers. This is consistent
with other commands that configure secrets. User names and passwords in the FTP and
TFTP URLs will not be sent to the authorization or accounting servers when the file>copy
source-url dest-url command is executed.
To Next Page
Loading...
