Manualshelf

Access Security Guide K/KA/KB.15.15

ManualsBrandsHP ManualsNetwork HardwareHP 5406R-8XGT/8SFP+ (No PSU) v2 zl2 Switch
41424344454647484950
NOTE: To disable password-recovery:
You must have physical access to the front panel of the switch.
The factory-reset replaceable must be enabled (the default).
For redundant management systems, this command only affects the active management module.
To disable password-recovery
1. Set the CLI to the global interface context.
2. Use show front-panel-security to determine whether the factory-reset replaceable is
enabled. If it is disabled, use the front-panel-security factory-reset command
to enable it.
3. Press and release the Clear button on the front panel of the switch.
4. Within 60-seconds of pressing the Clear button, enter the following command:
[no]front-panel-security password-recovery
5. Do one of the following after the CAUTION message appears:
If you want to complete the command, press [Y] (for "Yes").
If you want to abort the command, press [N] (for "No")
Example
Figure 23 Example of the steps for disabling password-recovery
Recovering passwords
If you lose the manager username/password with password-recovery enabled, use the password
recovery process to gain management access to the switch with an alternate password supplied
by HP Networking Support.
NOTE: Disabled password-recovery locks out the ability to recover a manager
username/password pair on the switch. The only way to recover from this is to use the Reset+Clear
button combination described under “Restoring the factory default configuration” (page 43). This
disrupts network operation and necessitates temporarily disconnecting the switch from the network
to prevent unauthorized access and other problems while it is being reconfigured.
To recover a lost password:
1. Note the switch base MAC address. It is shown on the label located on the upper right front
corner of the switch.
2. Contact HP Networking Support for further assistance.
3. Using the switch MAC address, HP Networking Support will generate and provide a "one-time
use" alternate password to gain management access to the switch. Once you gain access,
configure a new, known password.
NOTE: The alternate password provided by HP Networking Support is valid only for a single
login attempt. You cannot use the same "one-time-use" password if you lose the password a second
time. Because the password algorithm is randomized based upon your switch MAC address, the
password will change as soon as you use the "one-time-use" password provided by HP Networking
Support .
Front panel security 45