Brocade Fabric OS Command Reference Manual - Supporting Fabric OS v5.3.0 (53-1000436-01, June 2007)

ManualsBrandsHP ManualsStorageHP StorageWorks 4/32B SAN Switch Power Pack

751

752

753

754

755

756

757

758

759

760

724 Fabric OS Command Reference Manual

53-1000436-01

userConfig

--deletead username [-h AD_ID][-a AD_ID_list]

Delete Admin Domain(s) from username's Admin Domain list.

If a home Admin Domain is specified, it must be one of the ADs in the Admin

Domain permissions remaining after the ADs specified by the --deletead

option have been removed. If a home Admin Domain is not specified, the

current home Admin Domain remains unchanged if it is still in username's

Admin Domain permissions. If a home Admin Domain is not specified and

current home Admin Domain is deleted by the --deletead option, the new

home Admin Domain is set to the lowest numbered Admin Domain in

username's Admin Domain permissions. The existing Admin Domain

permission for username, and the AD_ID_list must be a subset of the Admin

Domain permissions of the account that runs ths command. This action is not

allowed in secure mode.

--change username [-r rolename][-h AD_ID][-a AD_ID_list][-d description][-e yes | no][-x ][-u ]

Changes the role, Admin Domain permissions and/or description of the user

account named username, on the switch. The -r option changes the role of

the account to rolename. The -d option changes the description of the

account to description. The -e option must be accompanied by a "yes" or "no"

to enable or disable an account. Once an account is disabled, the CLI

sessions associated with the account will be terminated. The -x option expires

the current password, forcing a password change the next time the user logs

in. Any of the user's existing sessions are unaffected. The -u option unlocks

the user account.

The -u, -x, -a and -h options are available only in non-secure mode.

The following rules apply to account changes:

You cannot change the role, Admin Domain permissions or home Admin Domain of any default

account.

You cannot change the role, Admin Domain permissions or description of accounts at the same

or higher authorization level.

You cannot change the role, Admin Domain permissions or home Admin Domain of your own

account.

No account can disable itself.

I AD_ID_list and the existing Admin Domain permissions for username

must be a subset of the

Admin Domain permissions of the account that runs the userConfig --change command.

--recover Recover all accounts created by Secure Fabric OS operations from backup

database. The backup database is created in Secure Fabric OS, when certain

operations cause a switch to delete some of its customer created accounts.

For details, read the secure mode description. Once accounts have been

recovered, the accounts in the backup database are still present.

The userConfig command operates on the switch-local user database only, regardless of whether

the switch is configured to use RADIUS authentication or not.

Examples To add a new account:

switch:admin> userconfig --add joe -r admin -d "Joe Smith"

Setting initial password for joe