HP StorageWorks 8/80 HP StorageWorks Fabric OS 6.2 administrator guide (5697-0 - Page 73

Changing account parameters This procedure can be performed on local user accounts. When changing account parameters, if you change the ADlist for the user account, all of the currently active sessions for that account will be logged out. For more information about changing the Admin Domain on an account, see Chapter 7, "Managing administrative domains" on page 191. 1. Connect to the switch and log in using an account assigned to the admin role. 2. Enter the following command: userconfig --change username -r rolename [-h LF_ID | adminDomain_ID] [-l logicalFabric_ID_list] [-a adminDomain_ID_list] [-d description] [-x] [-e yes | no] [-u] username Specifies the account name, which must begin with an alphabetic character. The name can be from 8 to 40 characters long. It is case-sensitive and can contain alphabetic and numeric characters, the period (.) and the underscore ( _ ). It must be different from all other account names on the Logical Switch. The account name cannot be the same as a role name. -r rolename Specifies the role: User, SwitchAdmin, ZoneAdmin, FabricAdmin, BasicSwitchAdmin, Operator, or Admin in nonsecure mode; in secure mode you can also use NonfcsAdmin. -h logicalFabric_ID or adminDomain_ID Optional: Specifies either the home Logical Fabric or Administrative Domain. If no Logical Fabric or Administrative Domain is specified, the lowest numbered Logical Fabric or Administrative Domain in the list is assigned. -l logicalFabric_ID_list Optional: Specifies which Logical Fabric the user may access; if no Logical Fabrics are listed, the user is automatically assigned to LF128 or the lowest Logical Fabric they belong to. Use comma-separated lists, ranges, or both for example: -l 1,9,10-15,244. -a adminDomain_ID_list Optional: Specifies which Administrative Domains the user may access; if no Administrative Domains are listed, the user is automatically assigned to AD0. Use comma-separated lists, ranges, or both for example -a 0,9,10-15,244. -d description Optional: Adds a description to the account. The description field can be up to 40 printable ASCII characters long. The following characters are not allowed: asterisk (*), single quotation mark ('), quotation mark ("), exclamation point (!), semicolon (;), and colon (:). -x Specifies an expired password that must be changed the first time the user logs in. -e yes|no Enables or disables an account. Specify yes to enable or no to disable an account. Once an account is disabled, the command line interface sessions associated with the account are terminated. -u Unlocks the specified user account. User accounts can get locked after several attempts to log in with an invalid password. See the Fabric OS Command Reference for more information on the passwdCfg command. Local account passwords The following rules apply to changing passwords: • Users can change their own passwords. • Only users with Admin roles can change the password for another account. When changing an Admin account password, you must provide the current password. Fabric OS 6.2 administrator guide 73