Initial User Account Configuration

Before you start mapping traffic, you must change the password for the admin account and add a few other accounts for use by different level users. (You may have already used the jump-start script to change the password for the admin account.)

Changing the admin Account Password

To change the password for the admin account using the username command, refer to the following:

(config) # username admin password <password>

Passwords must meet the following standards:

Include 8-64 characters.

Include at least one numeral

Include at least one capital letter

Include at least one special character (for example, !, @, #, $, %, ^, &, or * – ASCII 0x21, 0x2F, 0x3A, 0x40, 0x5B, 0x5F, 0x7B, 0x7E).

Enter a new password that meets the standards and confirm the password.

Setting Up Some Basic Accounts

Next, you will probably want to set a few user accounts with different access levels.

The GigaVUE H Series node has a local account database that can optionally integrate with an LDAP, RADIUS, or TACACS+ server for authentication. Any account you want to authenticate using an external AAA server must have a matching account name in the local database.

Authentication, user levels, and roles are discussed in detail in the GigaVUE-OS CLI Reference Guide. For now, however, it is easiest to simply create a few basic user accounts with different privilege levels. In general, user privileges are as follows:

Admin users have access to all command modes, including Standard, Enable, and Configure. They also have full permissions for all network, tool, and stack ports.

Operator users have access to all command modes, including Standard, Enable, and Configure. However, they only have access to the network and tool ports associated with their user group.

New users are created with the operator role by default. You can add additional roles with the username <username> roles add <roles> command.

Monitor users have access to the Standard and Enable command modes. They cannot configure packet distribution (or any other global GigaVUE H Series node options), but they can use the show command to review many of the settings in place on the node.

The following username commands create a new admin user and a new operator user:

Command	Comments
(config) # username psandoval password Nine9.Eight8! (config) # username psandoval roles add admin	Creates a new account named psandoval with a password, and grants it admin privileges.
(config) # username bcrawford password Seven7.Six6!	Creates a new account named bcrawford with a password. New users are automatically created with default operator level privileges, so there is no need to grant an additional role.

Command

Comments

(config) # username psandoval password Nine9.Eight8!

(config) # username psandoval roles add admin

Creates a new account named psandoval with a password, and grants it admin privileges.

(config) # username bcrawford password Seven7.Six6!

Creates a new account named bcrawford with a password. New users are automatically created with default operator level privileges, so there is no need to grant an additional role.

Once you have configured these basic user accounts, use the show usernames and show roles commands to review your settings.