Procedure 7-3: Edit, delete, or enter a user's login

- Overview

Use this procedure to:

  • Edit an existing user's network element login parameters

  • Delete an existing user's network element login parameters

  • Enter a new user's network element login parameters.

- Privilege level

You must log in as a Privileged or Administration user to complete this procedure.

User ID guidelines

A valid user ID must be a minimum of five allowed characters to a maximum of ten allowed characters.

Password guidelines

A valid password must comply with the following conditions:

  • The maximum and minimum password shall be are provisioned by the Security Administrator.
    • The minimum password length is provisionable to be between 6 (default) and 18 characters.

    • Passwords must contain at least one alphabetic character and at least three non-alphabetic characters (numbers and symbols).

    • The provisioned maximum password length shall be equal to or greater than the minimum password length.

  • If the provisioned value of the maximum password length is 10 characters, the following password composition rules apply:
    • A password must contain at least one alphabetic character and at least three non-alphabetic characters (numeric and the special characters)

    • At least one of the non-alphabetic characters must be a numeric character and at least one must be one of the special characters.

  • If the provisioned value of the maximum password length is between 11 and 20 characters, the following password composition rules apply:
    • A password must contain a mix of upper-case alphabetic characters, lower-case alphabetic characters, numeric characters, and special characters, including at least two of each type.

    • The password cannot contain the consecutive identical characters.

    • The password cannot contain the user login.

  • When passwords are changed, the old and new passwords must be different in at least three-character positions. The original password, or a significant substring of it, must not be part of the new password.

    If the current and new passwords are the same length, then the characters in at least three-character positions must be different.

    If the current and new passwords are different lengths, then for each possible contiguous sub-string of the length of the shorter password within the longer password, the characters in at least three-character positions must be different between the shorter password and the character sub-string within the longer password.

  • The network element does not allow reuse of the five most recently used passwords.

Important!

User passwords are case-sensitive.

- Before you begin

Prior to performing this procedure, refer to Before you begin and Required equipment in this chapter.

Steps

Complete the following steps to edit, delete, or enter a user's login parameters. For additional information about provisionable entries required in this procedure, refer to Appendix A, Provisionable parameters.

 
1

If...

Then...

Entering a new user's login,

Continue with Step 2.

Editing an existing user's login,

Proceed to Step 3.

Delete an existing user's login,

Proceed to Step 4.


2

Important!

Refer to User ID guidelines and Password guidelines.

ENTER A NEW USER LOGIN:

  1. From the System View menu select Administration → Security → Provision User Logins.

  2. From the User ID Panel, select New User and enter a new user ID in the adjacent field.

  3. From the User Type panel, select a Security Level for the new user from the pull-down menu.

  4. From the User Password panel, enter a password for the new user in the Enter Password: and Confirm Password: fields.

  5. From the Password Aging Period panel, select Disable to disable the password aging function, or enter the number of days (from 7-999) before the new user has to change his/her password.

  6. From the Inactivity Timeout Interval panel, select Disable to disable the timeout function, or enter the number of minutes (from 1-999) before the new user session is logged off because of inactivity.

  7. From the Login ID Status panel, select Enable or Disable to enable/disable the user ID.

  8. From the buttons at the bottom of the screen, click Add.

  9. Proceed to Step 5.


3

Important!

Refer to User ID guidelines and Password guidelines.

EDIT EXISTING USER LOGIN:

  1. From the System View, menu select Administration → Security → Provision User Logins.

  2. From the User ID Panel, select Existing User and an existing user ID from the pull-down menu.

    The remaining items in this step may be completed as required. Items not changed will retain existing settings.

  3. From the User Type panel, select a Security Level for the user from the pull-down menu.

  4. From the User Password panel, enter a password for the user in the Enter Password and Confirm Password fields.

  5. From the New User ID panel, enter the new ID for the existing user in the Enter New User ID field.

  6. From the Password Aging Interval panel, select Disable to disable the password aging function, or enter the number of days (from 7-999) before the user has to change his/her password.

  7. From the Inactivity Timeout Period panel, select Disable to disable the timeout function, or enter the number of minutes (from 1-999) before the user session is logged off because of inactivity.

  8. From the Login ID Status panel, select Enable or Disable to enable/disable the user ID.

  9. From the Lockout Status panel, select ENABLE_LOGIN to enable a user ID that has been locked out.

  10. From the buttons at the bottom of the screen, click Modify.

  11. Proceed to Step 5.


4

Important!

Default privileged users cannot be deleted. Non-default Privileged users may be deleted.

DELETE A USER LOGIN:

  1. From the System View, menu select Administration → Security → Provision User Logins.

  2. From the User ID Panel, select Existing User and an existing user ID from the pull-down menu.

  3. From the buttons at the bottom of the screen, click Delete.

  4. Proceed to Step 5.


5

Do you want to continue provisioning?

If...

Then...

Yes,

Return to Step 1.

No,

STOP! End of Procedure.


End of steps

November 2011Copyright © 2011 Alcatel-Lucent. All rights reserved.