Cisco Cisco Expressway Maintenance Manual
■
The Expressway has a default admin local administrator account with full read-write access. It can be used to
access the Expressway using the web interface, the API interface or the CLI. Note that you cannot access the
Expressway via the default admin account if a Remote only authentication source is in use.
access the Expressway using the web interface, the API interface or the CLI. Note that you cannot access the
Expressway via the default admin account if a Remote only authentication source is in use.
■
You can add additional local administrator accounts which can be used to access the Expressway using the
web and API interfaces only.
web and API interfaces only.
■
Remotely managed administrator accounts can be used to access the Expressway using the web and API
interfaces only.
interfaces only.
page
(Users > Password security). All passwords and usernames are case sensitive.
Note that:
■
and can be used as an audit trail. This is particularly useful when you have multiple administrator accounts.
■
More than one administrator session can be running at the same time. These sessions could be using the web
interface, command line interface, or a mixture of both. This may cause confusion if each administrator
session attempts to modify the same configuration settings - changes made in one session will overwrite
changes made in another session.
interface, command line interface, or a mixture of both. This may cause confusion if each administrator
session attempts to modify the same configuration settings - changes made in one session will overwrite
changes made in another session.
■
).
section for more information.
FindMe accounts
FindMe accounts are used by individuals in an enterprise to configure the devices and locations on which they can be
contacted through their FindMe ID.
contacted through their FindMe ID.
Each FindMe account is accessed using a username and password.
■
If remote FindMe account authentication is selected, the Expressway administrator must set up FindMe groups
to match the corresponding group names in the remote directory service. Note that only the username and
password details are managed remotely. All other properties of the FindMe account, such as the FindMe ID,
devices and locations are stored in the local Expressway database.
to match the corresponding group names in the remote directory service. Note that only the username and
password details are managed remotely. All other properties of the FindMe account, such as the FindMe ID,
devices and locations are stored in the local Expressway database.
See the Configuring FindMe accounts section for more information about defining FindMe account details and their
associated FindMe devices and locations.
associated FindMe devices and locations.
for more details on configuring FindMe and user accounts.
Root account
The Expressway provides a root account which can be used to log in to the Expressway operating system. The root
account should not be used in normal operation, and in particular system configuration should not be conducted
using this account. Use the admin account instead.
account should not be used in normal operation, and in particular system configuration should not be conducted
using this account. Use the admin account instead.
section for more information.
Note:
remember to change the passwords for the admin and root accounts from their default values.
Configuring Password Security
passwords must meet a minimum level of complexity before they are accepted.
If Enforce strict passwords is set to On, all subsequently configured local administrator account passwords must
conform to the following rules for what constitutes a strict password.
conform to the following rules for what constitutes a strict password.
If Enforce strict passwords is set to Off, no extra checks are made on local administrator account passwords.
239
Cisco Expressway Administrator Guide
User Accounts