Brocade Secure Fabric OS Administrator's Guide - Supporting Fabric OS v3.2.0, v4.4.0, v5.0.1, v5.1.0, 5.2.0, and 5.3.0 (53-1000244-02, June 2007)

ManualsBrandsHP ManualsStorageBrocade 4Gb SAN Switch

66 Secure Fabric OS Administrator’s Guide

53-1000244-02

Table 17 on page 66 summarizes login account behavior with secure mode disabled and enabled.

MODIFYING PASSWORDS IN SECURE MODE

Use the passwd command to modify the fabric-wide user password and the passwords for the FCS

switches. Use the secNonFCSPasswd to modify the admin password for non-FCS switches.

NOTE

If the password is changed for a login account, all open sessions using that account are terminated,

including the session from which the passwd command was executed, if applicable.

TABLE 17 Login Account Behavior with Secure Mode Disabled and Enabled

Account Role Secure Mode Disabled Secure Mode Enabled

admin:

Can use to modify admin and user

passwords.

Available on all switches.

Password is specific to each switch;

can modify using the passwd

command.

Available on all switches. Can create

temporary passwords.

Two passwords:

One for all FCS switches; can modify

using passwd command on the

primary FCS switch.

One for all non-FCS switches; can

modify using secNonFCSPasswd

command on the primary FCS switch.

factory:

Created for switch initialization

purposes; not recommended for

administrative operations.

Can use to modify factory, admin,

and user passwords.

Available on all switches.

Password is specific to each switch;

can modify using the passwd

command.

Available on FCS switches only.

However, can temporarily enable root

and factory accounts on non-FCS

switches by creating a temporary

password.

Password is common to all FCS

switches; can modify using passwd

command on the primary FCS switch.

root:

Created for debugging purposes;

not recommended for

administrative operations.

Can use to modify root, factory,

admin, and user passwords.

Available on all switches.

Password is specific to each switch;

can modify using the passwd

command.

Available on FCS switches only.

However, can temporarily enable root

and factory accounts on non-FCS

switches by creating a temporary

password.

Password is common to all FCS

switches; can modify using passwd

command on the primary FCS switch.

switchAdmin, Operator,

ZoneAdmin, FabricAdmin

Available on all switches.

Password is specific to each switch;

can modify using the passwd

command.

Available on all switches.

Note: The switchAdmin, Operator,

ZoneAdmin, FabricAdmin role

accounts can log in to a switch

running Fabric OS v3.2.0 or v4.4.0

but it depreciates to a user-level role

permissions.

user Available on all switches.

Password is specific to each switch;

can modify using the passwd

command.

Available on all switches. Can create

temporary passwords.

Password is fabric wide; can modify

using passwd command on the

primary FCS switch.