Brocade Fabric OS Command Reference Manual (53-1000240-01, November 2006)
2-726 Fabric OS Command Reference Manual
Publication Number: 53-1000240-01
userConfig
2
Note: Enter commands in lowercase only; mixed case is for readability.
--deletead username [-h AD_ID][-a AD_ID_list]
Delete Admin Domain(s) from username's Admin Domain list.
If a home Admin Domain is specified, it must be one of the ADs in the Admin
Domain permissions remaining after the ADs specified by the --deletead option
have been removed. If a home Admin Domain is not specified, the current home
Admin Domain remains unchanged if it is still in username's Admin Domain
permissions. If a home Admin Domain is not specified and current home Admin
Domain is deleted by the --deletead option, the new home Admin Domain is set
to the lowest numbered Admin Domain in username's Admin Domain
permissions. The existing Admin Domain permission for username, and the
AD_ID_list must be a subset of the Admin Domain permissions of the account that
runs ths command. This action is not allowed in secure mode.
--change username [-r rolename][-h AD_ID][-a AD_ID_list][-d description][-e yes | no][-x ][-u ]
Changes the role, Admin Domain permissions and/or description of the user
account named username, on the switch. The -r option changes the role of the
account to rolename. The -d option changes the description of the account to
description. The -e option must be accompanied by a "yes" or "no" to enable or
disable an account. Once an account is disabled, the CLI sessions associated with
the account will be terminated. The -x option expires the current password, forcing
a password change the next time the user logs in. Any of the user's existing
sessions are unaffected. The -u option unlocks the user account.
Note
The -u, -x, -a and -h options are available only in non-secure mode.
The following rules apply to account changes:
You cannot change the role, Admin Domain permissions or home Admin
Domain of any default account.
You cannot change the role, Admin Domain permissions or description of
accounts at the same or higher authorization level.
You cannot change the role, Admin Domain permissions or home Admin
Domain of your own account.
No account can disable itself.
I AD_ID_list and the existing Admin Domain permissions for username must
be a subset of the Admin Domain permissions of the account that runs the
userConfig --change command.
--recover Recover all accounts created by Secure Fabric OS operations from backup
database. The backup database is created in Secure Fabric OS, when certain
operations cause a switch to delete some of its customer created accounts. For
details, read the secure mode description. Once accounts have been recovered, the
accounts in the backup database are still present.
N
ote
The userConfig command operates on the switch-local user database only, regardless of whether the
switch is configured to use RADIUS authentication or not.