2-15
Configuring Username and Password Security
Saving Security Credentials in a Config File
Figure 2-6. Example of no include-credentials store-in-config Messages and Options
Local Manager and Operator Passwords
The information saved to the running-config file when the include-credentials
command is entered includes:
password manager [user-name <name>] <hash-type> <pass-hash>
password operator [user-name <name>] <hash-type> <pass-hash>
where
<name> is an alphanumeric string for the user name assigned to the
manager or operator.
<hash-type> indicates the type of hash algorithm used: SHA-1 or plain
text.
<pass-hash> is the SHA-1 authentication protocol’s hash of the pass-
word or clear ASCII text.
For example, a manager username and password may be stored in a running-
config file as follows:
HP Switch(config)# no include-credentials store-in-config
This will remove any switch passwords and inactive SSH authorized keys from all
configuration files. This will also restore the functionality to store only a
single set of passwords and authorized keys on the switch.
Do you want to continue (y/n)? y
The SSH authorized keys associated with the active configuration will be deleted.
Would you like to retain these as the switch global SSH authorized keys (y/n)? y
Do you want to set new switch passwords (y/n)? y
Operator username: admin
Operator password: ********
Confirm password: ********
Manager username: GeorgeV
Manager password: ********
Confirm password: ********
HP Switch(config)#
Setting new passwords for multiple usernames.
password manager user-name George SHA1
2fd4e1c67a2d28fced849ee1bb76e7391b93eb12
To Next Page
Loading...
Need help?
General
