HP StorageWorks 8/80 HP StorageWorks Fabric OS 6.2 administrator guide (5697-0 - Page 71

Local database user accounts

Get HP StorageWorks 8/80 - SAN Switch PDF manuals and user guides View all HP StorageWorks 8/80 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 71 highlights

Table 11 Maximum number of simultaneous sessions (continued) Role name Maximum sessions User 4 ZoneAdmin 4 Local database user accounts User add, change, and delete operations are subject to the subset rule: An admin with ADlist 0-10 or LFlist 1-10 cannot perform operations on an admin, user, or any role with an ADlist 11-25 or LFlist 11-128. The user account being changed must have an ADlist or LFlist that is a subset of the account that is making the change. In addition to the default administrative and user accounts, Fabric OS supports up to 252 user-defined accounts in each Logical Switch (domain). These accounts expand your ability to track account access and audit administrative activities. Default accounts Table 12 lists the predefined accounts offered by Fabric OS that are available in the local switch user database. The password for all default accounts for each switch should be changed during the initial installation and configuration. Table 12 Default local user accounts Account name Role Admin Domain Logical Fabric Description admin Admin AD0-255 home: 0 LF1-128 home: 128 Most commands have observe-modify permission. factory root Factory AD0-255 home: 0 Root AD0-255 home: 0 LF1-128 home: 128 LF1-128 home: 128 Reserved Reserved user User AD0 LF-128 home: 0 home: 128 Most commands have observe-only permission. Admin Domain and Virtual Fabric considerations: Administrators can act on another account only if that account has an Admin Domain or Logical Fabric list that is a subset of the administrator. Displaying account information 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the appropriate show operands for the account information you want to display: • Enter userConfig --show -a to show all account information for a Logical Switch. • Enter userConfig --show username to show account information for the specified account. • Enter userConfig --showad -a adminDomain_ID to show all accounts permitted to select the specified adminDomain_ID. • Enter userConfig --showlf -l logicalFabric_ID for each LF in an LF_ID_list, displays a list of users that include that LF in their LF permissions. Creating an account 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the following command: userConfig --add username -r role [-l LF_ID_list] [-h VF_ID | AD_ID] [-a AD_ID_list][-c chassis_role] [-d description] [-x] Fabric OS 6.2 administrator guide 71

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
  • 289
  • 290
  • 291
  • 292
  • 293
  • 294
  • 295
  • 296
  • 297
  • 298
  • 299
  • 300
  • 301
  • 302
  • 303
  • 304
  • 305
  • 306
  • 307
  • 308
  • 309
  • 310
  • 311
  • 312
  • 313
  • 314
  • 315
  • 316
  • 317
  • 318
  • 319
  • 320
  • 321
  • 322
  • 323
  • 324
  • 325
  • 326
  • 327
  • 328
  • 329
  • 330
  • 331
  • 332
  • 333
  • 334
  • 335
  • 336
  • 337
  • 338
  • 339
  • 340
  • 341
  • 342
  • 343
  • 344
  • 345
  • 346
  • 347
  • 348
  • 349
  • 350
  • 351
  • 352
  • 353
  • 354
  • 355
  • 356
  • 357
  • 358
  • 359
  • 360
  • 361
  • 362
  • 363
  • 364
  • 365
  • 366
  • 367
  • 368
  • 369
  • 370
  • 371
  • 372
  • 373
  • 374
  • 375
  • 376
  • 377
  • 378
  • 379
  • 380
  • 381
  • 382
  • 383
  • 384
  • 385
  • 386
  • 387
  • 388
  • 389
  • 390
  • 391
  • 392
  • 393
  • 394
  • 395
  • 396
  • 397
  • 398
  • 399
  • 400
  • 401
  • 402
  • 403
  • 404
  • 405
  • 406
  • 407
  • 408
  • 409
  • 410
  • 411
  • 412
  • 413
  • 414
  • 415
  • 416
  • 417
  • 418
  • 419
  • 420
  • 421
  • 422
  • 423
  • 424
  • 425
  • 426
  • 427
  • 428
  • 429
  • 430
  • 431
  • 432
  • 433
  • 434
  • 435
  • 436
  • 437
  • 438
  • 439
  • 440
  • 441
  • 442
  • 443
  • 444
  • 445
  • 446
  • 447
  • 448
  • 449
  • 450
  • 451
  • 452
  • 453
  • 454
  • 455
  • 456
  • 457
  • 458
  • 459
  • 460
  • 461
  • 462
  • 463
  • 464
  • 465
  • 466
  • 467
  • 468
  • 469
  • 470
  • 471
  • 472
  • 473
  • 474
  • 475
  • 476
  • 477
  • 478
  • 479
  • 480
  • 481
  • 482
  • 483
  • 484
  • 485
  • 486
  • 487
  • 488
  • 489
  • 490
  • 491
  • 492
  • 493
  • 494
  • 495
  • 496
  • 497
  • 498
  • 499
  • 500
  • 501
  • 502
  • 503
  • 504
  • 505
  • 506
  • 507
  • 508
  • 509
  • 510
  • 511
  • 512
  • 513
  • 514
  • 515
  • 516
  • 517
  • 518
  • 519
  • 520
  • 521
  • 522
  • 523
  • 524
  • 525
  • 526
  • 527
  • 528
  • 529
  • 530
  • 531
  • 532
  • 533
  • 534
  • 535
  • 536
  • 537
  • 538
  • 539
  • 540
  • 541
  • 542
  • 543
  • 544
  • 545
  • 546
  • 547
  • 548
  • 549
  • 550
  • 551
  • 552
  • 553
  • 554
  • 555
  • 556
  • 557
  • 558
  • 559
  • 560
  • 561
  • 562
  • 563
  • 564
  • 565
  • 566
  • 567
  • 568
  • 569
  • 570
  • 571
  • 572
  • 573
  • 574
  • 575
  • 576
Fabric OS 6.2 administrator guide
71
Local database user accounts
User
add
,
change
, and
delete
operations are subject to the
subset
rule: An admin with ADlist 0-10 or
LFlist 1-10 cannot perform operations on an
admin
,
user
, or
any
role with an ADlist 11-25 or LFlist 11-128.
The user account being changed must have an ADlist or LFlist that is a subset of the account that is making
the change.
In addition to the default administrative and user accounts, Fabric OS supports up to 252 user-defined
accounts in each Logical Switch (domain). These accounts expand your ability to track account access and
audit administrative activities.
Default accounts
Table 12
lists the predefined accounts offered by Fabric OS that are available in the local switch user
database. The password for all default accounts for each switch should be changed during the initial
installation and configuration.
Admin Domain and Virtual Fabric considerations:
Administrators can act on another account only if that
account has an Admin Domain or Logical Fabric list that is a subset of the administrator.
Displaying account information
1.
Connect to the switch and log in using an account assigned to the admin role.
2.
Enter the appropriate
show
operands for the account information you want to display:
Enter
userConfig
--
show -a
to show all account information for a Logical Switch.
Enter
userConfig
--
show username
to show account information for the specified account.
Enter
userConfig
--
showad -a adminDomain_ID
to show all accounts permitted to select
the specified adminDomain_ID.
Enter
userConfig
--
showlf -l logicalFabric_ID
for
each LF in an LF_ID_list, displays a
list of users that include that LF in their LF permissions.
Creating an account
1.
Connect to the switch and log in using an account assigned to the admin role.
2.
Enter the following command:
userConfig --add
username
-r
role
[-l
LF_ID_list
] [-h VF_ID | AD_ID]
[-a AD_ID_list][-c chassis_role] [-d
description
] [-x]
User
4
ZoneAdmin
4
Table 11
Maximum number of simultaneous sessions (continued)
Role name
Maximum sessions
Table 12
Default local user accounts
Account
name
Role
Admin
Domain
Logical Fabric
Description
admin
Admin
AD0-255
home: 0
LF1-128
home: 128
Most commands have
observe-modify
permission.
factory
Factory
AD0-255
home: 0
LF1-128
home: 128
Reserved
root
Root
AD0-255
home: 0
LF1-128
home: 128
Reserved
user
User
AD0
home: 0
LF-128
home: 128
Most commands have
observe-only
permission.