HP (Hewlett-Packard) GbE2 ユーザーズマニュアル
Setting up and installing the GbE2 interconnect switch 25
•
User name and password settings
•
Default access to various management interfaces
•
Network Time Protocol (NTP) settings
IMPORTANT:
Refer to the “Runtime switching software default settings” appendix for a complete list of default
configuration settings.
GbE2 Interconnect Switch security
When planning the GbE2 Interconnect Switch configuration, secure access to the management interface by:
•
Creating users with various access levels
•
Enabling or disabling access to various management interfaces to fit the security policy
•
Changing default SNMP community strings for read-only and read-write access
User, operator, and administrator access rights
To enable better GbE2 Interconnect Switch management and user accountability, three levels or classes of user access
have been implemented on the GbE2 Interconnect Switch. Levels of access to CLI, Web management functions, and
screens increase as needed to perform various GbE2 Interconnect Switch management tasks. Conceptually, access
classes are defined as follows:
have been implemented on the GbE2 Interconnect Switch. Levels of access to CLI, Web management functions, and
screens increase as needed to perform various GbE2 Interconnect Switch management tasks. Conceptually, access
classes are defined as follows:
•
User interaction with the GbE2 Interconnect Switch is completely passive; nothing can be changed on the GbE2
Interconnect Switch. Users may display information that has no security or privacy implications, such as GbE2
Interconnect Switch statistics and current operational state information.
Interconnect Switch. Users may display information that has no security or privacy implications, such as GbE2
Interconnect Switch statistics and current operational state information.
•
Operators can only effect temporary changes on the GbE2 Interconnect Switch. These changes will be lost
when the GbE2 Interconnect Switch is rebooted/reset. Operators have access to the GbE2 Interconnect Switch
management features used for daily GbE2 Interconnect Switch operations. Because any changes an operator
makes are undone by a reset of the GbE2 Interconnect Switch, operators cannot severely impact GbE2
Interconnect Switch operation.
when the GbE2 Interconnect Switch is rebooted/reset. Operators have access to the GbE2 Interconnect Switch
management features used for daily GbE2 Interconnect Switch operations. Because any changes an operator
makes are undone by a reset of the GbE2 Interconnect Switch, operators cannot severely impact GbE2
Interconnect Switch operation.
•
Administrators are the only ones that may make permanent changes to the GbE2 Interconnect Switch
configuration, changes that are persistent across a reboot/reset of the GbE2 Interconnect Switch. Administrators
can access GbE2 Interconnect Switch functions to configure and troubleshoot problems on the GbE2
Interconnect Switch. Because administrators can also make temporary (operator-level) changes as well, they
must be aware of the interactions between temporary and permanent changes.
configuration, changes that are persistent across a reboot/reset of the GbE2 Interconnect Switch. Administrators
can access GbE2 Interconnect Switch functions to configure and troubleshoot problems on the GbE2
Interconnect Switch. Because administrators can also make temporary (operator-level) changes as well, they
must be aware of the interactions between temporary and permanent changes.
Access to GbE2 Interconnect Switch functions is controlled through the use of unique surnames and passwords. Once
you are connected to the GbE2 Interconnect Switch via the local console, Telnet, or SSH, you are prompted to enter a
password. The default user names/password for each access level is listed in the following table.
you are connected to the GbE2 Interconnect Switch via the local console, Telnet, or SSH, you are prompted to enter a
password. The default user names/password for each access level is listed in the following table.
NOTE:
It is recommended that you change default GbE2 Interconnect Switch passwords after initial
configuration and as regularly as required under your network security policies. For more information, refer to
the “Setting Passwords” section in Chapter 3 of the HP ProLiant BL p-Class GbE2 Interconnect Switch
Command Reference Guide.
the “Setting Passwords” section in Chapter 3 of the HP ProLiant BL p-Class GbE2 Interconnect Switch
Command Reference Guide.
Table 8
User access levels
User account
Description and tasks performed
Password
User
The user has no direct responsibility for
GbE2 Interconnect Switch management.
He or she can view all GbE2
Interconnect Switch status information
and statistics, but cannot make any
configuration changes to the GbE2
Interconnect Switch.
GbE2 Interconnect Switch management.
He or she can view all GbE2
Interconnect Switch status information
and statistics, but cannot make any
configuration changes to the GbE2
Interconnect Switch.
user
Operator
The operator manages all functions of
the GbE2 Interconnect Switch. The
operator can reset ports or the entire
GbE2 Interconnect Switch.
By default, the operator account is
disabled and has no password.
the GbE2 Interconnect Switch. The
operator can reset ports or the entire
GbE2 Interconnect Switch.
By default, the operator account is
disabled and has no password.