KB.15.15

<name>

is an alphanumeric string for the user name assigned to the manager or operator.

<hash-type>

indicates the type of hash algorithm used: SHA-1 or plain text.

<pass-hash>

is the SHA-1 authentication protocol's hash of the password or clear ASCII text.

For example, a manager username and password can be stored in a running-config file as

follows:

Figure 24 Manager/User name storage

Use the write memory command to save the password configurations in the startup-config

file. The passwords take effect when the switch boots with the software version associated with

that configuration file.

CAUTION: If a startup-config file includes other security credentials, but does not contain

a manager or operator password, the switch will not have password protection and can be accessed

through Telnet, the serial port, or WebAgent with full manager privileges.

Saving SNMP security credentials

SNMPv1 community names and write access settings, and SNMPv3 usernames, continue to be

saved in the startup-config file even when entering the include-credentials command.

In addition, the following SNMPv3 security replaceables are saved:

Figure 25 [no]front-panel-security password-clear

where: <name> is the name of an SNMPv3 management station.

[ auth <md5 | sha> ]

is the optional authentication method used for the management station.

auth-pass is the hashed authentication password used with the configured authentication method.

[ privpriv-pass ]

is the optional hashed privacy password used by a privacy protocol to encrypt SNMPv3 messages

between the switch and the station.

The following example shows the additional security credentials for SNMPv3 users that can be

saved in a running-config file:

Saving username and password security 47