Admin user

JMDP · Post by **JMDP** » 13 Mar 2013 07:01

Hi,

We need to disable admin default user in 6850E switch due to a security audit. After review a lot of post and Alcatel documents, it seems an impossible mission...

We haven´t radius servers, only local authentication..

Please, do you have any advice to solve this issue? Maybe could we configure admin user for console access only??

Many thanks in advance. Regards.

JMDP

one6f · Post by **one6f** » 13 Mar 2013 16:43

Hi,
initially, the admin user can only be authorized on the switch through the console port. Management access through any other interface is disabled. The Authenticated Switch Access commands may be used to enable access through other interfaces/services (Telnet, HTTP, etc.); however, SNMP access is not allowed for the admin user. Also, the admin user cannot be modified, except for the password.

Enable management interfaces types, such as a telnet, secure shell , http or ftp through the aaa authentication command for the interface you are using.
Disabling with no aaa authentication <http/ftp/....>

The Admin user can be configured to have access to the switch limited to the console port only:

Code: Select all

-> user admin console-only enable

This results in the Admin account not having any remote access such as Telnet.
Please consult: Switch Management Guide

JMDP · Post by **JMDP** » 13 Mar 2013 18:33

Hi One6f,

Many thanks for your answer. I was trying with "user admin password xxxx read-only all" and another domains but i received continuously the message "Only password could be modified for admin user"...

Thanks and Regards

JMDP

Alcatel Unleashed

Admin user

Admin user

Re: Admin user

Re: Admin user