Manualshelf

User Manual

ManualsBrandsCabletron ManualsCables & InterconnectsCabletron Tpfot-2 10BT Transceiver 1 RJ45 Utp to 1 St MMf
411412413414415416417418419420
Enterasys X-Pedition User Reference Manual 393
Configuring X-Pedition Access Security
password is defined, the X-Pedition will advise you to configure a password, then
switch to Enable mode—from here you can access Configure mode and make
configuration changes. Access to Configuration mode may be configured to require a
password. For recommendations on selecting a password, refer to Passwords on
page 30.
The X-Pedition stores passwords in the startup configuration file. If you copy a configuration file
from one X-Pedition to another, the passwords in the file will automatically apply to the new router.
When you activate a new password by copying the system set password command to the active
configuration, the X-Pedition replaces the command with a system set hashed-password
command to hide the password text in the configuration file. This prevents others who access this
file from viewing the password.
To remove the Enable mode password defined above, enter the following command from
Configure mode:
Password Policies
Once a password is established, the default password policies apply unless configured otherwise.
The following example requires a user to change his password after logging in for the first time. All
remaining password policies use the default values.
In the next example, the password expiration notice changes to 10 days, the login failure retry time
shortens to 30 minutes, and the minimum password length changes to 6 characters. All other
parameters use their default values.
Note: Passwords will appear on the console as asterisks to prevent them from being observed.
Multi-User Mode
Multi-user mode password security employs individual user accounts to grant CLI permissions on a
case-by-case basis—this requires that each user log in via username and password. The X-Pedition
supports up to 256 concurrent user accounts (although you may still employ either protocol, multi-
user accounting no longer requires TACACS+ or RADIUS). To define a password for Login,
Enable, or Configure mode, use the system set password command from Configure mode. In
multi-user mode, you may configure the following information for each user account:
•Username
New password
xp(config)# system set password enable none
xp(config)# system set password-policy
change-after-first-login on
xp(config)# system set password-policy expire-warning 10 login-failure-grace-time 30 minimum-
length 6