Manualshelf

R211x-HP Flexfabric 11900 Fundamentals Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP FlexFabric 11000 Switch Products
21222324252627282930
15
Login overview
The first time you access the device, you can log in to the CLI of the default MDC through the console
port. After login, you can create non-default MDCs, change console login parameters, or configure
other access methods, including Telnet, SSH, modem, and SNMP.
Non-default MDCs have no console port. To log in to a non-default MDC for the first time, you must log
in to the default MDC and then switch to the non-default MDC using the switchto mdc command. After
you log in to a non-default MDC, you can configure Telnet login, SSH login, modem dial-in, or SNMP
access. Then, administrators of the default MDC and those of the non-default MDC can access the
non-default MDC through Telnet, SSH, SNMP, or modems.
The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for features,
commands, and parameters might differ in FIPS mode and non-FIPS mode. For more information about
FIPS mode, see Security Configuration Guide.
Telnet login is not supported in FIPS mode.
Table 6 Login methods at a glance
Lo
g
in method Default settin
g
s
and minimum confi
g
uration re
q
uirements
Logging in to the CLI:
Logging in through the console
port locally
By default, login through the console port is enabled, no username or
password is required, and the user role network-admin is assigned.
After login, configure password or scheme authentication mode to
improve device security.
Logging in through Telnet
By default, Telnet login is disabled.
To Log in through Telnet, complete the following configuration tasks:
Enable the Telnet server function.
Assign an IP address to a Layer 3 interface and make sure the
interface and the Telnet client can reach each other.
Configure an authentication mode for VTY login users. By default,
password authentication is used but no password is configured.
Assign a user role to VTY login users (network-operator by default).
Logging in through SSH
By default, SSH login is disabled.
To log in through SSH, complete the following configuration tasks:
Enable the SSH server function and configure SSH attributes.
Assign an IP address to a Layer 3 interface and make sure the
interface and the SSH client can reach each other.
Configure scheme authentication for VTY login users (password
authentication by default).
Assign a user role to VTY login users (network-operator by default).
Logging in through a pair of
modems
By default, modem dial-in is enabled, and does not require a
username or password. After login, the user role network-admin is
assigned.