Alcatel Carrier Internetworking Solutions 7700 Manual De Usuario
22
Your First Login Session
March 2005
Access to the EMP. By default, only devices in the same
subnet as the EMP will be able to manage the switch
through that port. For information on allowing devices in
other subnets to manage the switch via the EMP, refer to
the Hardware Users Guide.
subnet as the EMP will be able to manage the switch
through that port. For information on allowing devices in
other subnets to manage the switch via the EMP, refer to
the Hardware Users Guide.
5 Save these changes to the switch’s running memory by
entering commit system at the boot prompt:
entering commit system at the boot prompt:
Boot > commit system
This will immediately enable your changes and allow
users to ping the EMP. Note, however, that these changes
have not yet been saved to the switch’s boot.params file
and will be lost if the switch is rebooted.
6 To permanently save these changes to the
boot.params file, enter commit file at the boot prompt:
boot.params file, enter commit file at the boot prompt:
Boot > commit file
Changes will be preserved following a switch reboot.
7 Return to the CLI prompt by entering exit at the boot
prompt.
prompt.
Important. Although you have configured the EMP with
valid IP address information, you will not be able to
access the switch through this port for Telnet, FTP,
WebView, or SNMP sessions until you have unlocked
these remote session types. See
valid IP address information, you will not be able to
access the switch through this port for Telnet, FTP,
WebView, or SNMP sessions until you have unlocked
these remote session types. See
for more information.
Unlocking Session Types
Security is a key feature on OmniSwitch 7700/7800 switches.
As a result, when you access the switch for the first time, you
must use a direct console port connection. All other session
types (Telnet, FTP, WebView, SNMP, etc.) are “locked out”
until they are manually unlocked by the user.
As a result, when you access the switch for the first time, you
must use a direct console port connection. All other session
types (Telnet, FTP, WebView, SNMP, etc.) are “locked out”
until they are manually unlocked by the user.
The CLI command used to unlock session types is
Note. When you unlock session types, you are granting
switch access to non-local sessions (e.g., Telnet). As a
result, users who know the correct user login and pass-
word will have remote access to the switch. For more
information on switch security, refer to the Switch
Management Guide.
switch access to non-local sessions (e.g., Telnet). As a
result, users who know the correct user login and pass-
word will have remote access to the switch. For more
information on switch security, refer to the Switch
Management Guide.
Unlocking All Session Types
To unlock all session types, enter the following command
syntax at the CLI prompt:
syntax at the CLI prompt:
-> aaa authentication default local
Unlocking Specified Session Types
You can also unlock session types on a one-by-one basis. For
example, to unlock Telnet sessions only, enter the following
command:
example, to unlock Telnet sessions only, enter the following
command:
-> aaa authentication telnet local