Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Configure accounts
set account admin
Change the password for the admin account.
set account admin --password
 
Command modes
All products.
Usage guidelines
You are prompted to enter the current password, and then prompted to enter and confirm the new password.
The admin password is initially set when you run the firstboot script.
The password must be 8 to 15 characters in length and it must include:
*
*
*
*
! # % & ' ( ) * + , - . / ; < = > ? @ [ ] ^ _ { | } ~
Exclude all of the following:
*
*
*
*
*
Command history
 
Related commands
 
show account audit
Determine whether the audit account is enabled or disabled.
(view)# show account audit --status
 
Command modes
All products.
Examples
(view)# show account audit --status
Related commands
 
set account audit
Enable or disable the audit account, and set or change the audit account password.
set account audit --status <enabled|disabled>
set account audit --password
 
Command modes
All products.
Usage guidelines
The --status and --password parameters cannot be used at the same time.
When enabling the audit account for the first time, set the audit account password.
The password must be 8 to 15 characters in length and it must include:
*
*
*
*
! # % & ' ( ) * + , - . / ; < = > ? @ [ ] ^ _ { | } ~
Exclude all of the following:
*
*
*
*
*
Related commands
 
set access ssh
Enable or disable remote CLI access via SSH.
set access ssh --status <enabled|disabled>
 
Command modes
All products. Not supported in Azure.
Usage guidelines
SSH status is enabled or disabled for all active accounts. Valid users include admin, audit, and tech-support. There is no access via SSH for the root user, as this is a reserved internal account.
Command history
 
Related commands
 
show access ssh
Display whether remote CLI access via SSH is enabled or disabled.
show access ssh --status
 
Command modes
All products.
Command history
 
Related commands
 
show account email
Display the admin account email address.
show account email
Command modes
All products.
Command history
 
Related commands
 
set account email
Define an email address to use for admin account password recovery.
set account email --address <address>
 
Command modes
All products.
Usage guidelines
A temporary password is sent to this email address when you request automated password recovery help. You must also define an SMTP server.
Forcepoint Technical Support can manually issue a temporary password if you provide the security code found in the appliance iDRAC console.
Command history
 
Related commands
 
send test_email
Send a test email using the email/SMTP configuration.
send test_email
Command modes
All products.
Related commands
 
show account smtp
Display the SMTP server settings used with the admin email address to facilitate password recovery.
show account smtp
Command modes
All products.
Usage guidelines
Displays:
*
*
*
*
Command history
 
Related commands
 
set account smtp
Define an SMTP server for use during admin account password recovery.
set account smtp --host <location> --port <port> --user <name>
 
Command modes
All products.
Usage guidelines
Password recovery requires you to define:
1.
2.
Examples
(config)# set account smtp --host 10.0.0.25 --port 25 --user smtpuser
Command history
 
Related commands
 
delete account email
Delete the password recovery email address.
delete account email
Command modes
All products.
delete account smtp
Delete SMTP settings.
delete account smtp
Command modes
All products.
Related commands
 
show account tech-support
Display Forcepoint Technical Support account access or activity history.
show account tech-support --status
show account tech-support --history
 
Command modes
All products.
Usage guidelines
The --status and --history parameters cannot be used at the same time.
The activity history includes both local and remote access via the tech-support account.
Command history
 
Related commands
 
set account tech-support
Enable or disable access for Forcepoint Technical Support.
set account tech-support --status <enabled|disabled>
 
Command modes
All products.
Usage guidelines
A temporary tech-support password is generated when you enable this access. Forcepoint Technical Support retrieves the password from a special URL.
To allow Technical Support remote access, SSH access must also be enabled (see set access ssh):
set access ssh --status enabled
When a technician uses the tech-support account, the session ends automatically after 15 minutes of inactivity.
Command history
 
Related commands
 
show current user
Show the user currently logged on.
show current user
Command modes
All products.
Examples
(config)# show current user
Logged in as jdoe
Related commands
 
show user
Show user information for all logged-on users or for a specific user.
show user [--name <unique_user_name>]
 
Command modes
All products.
Examples
(view)# show user --name jdoe
Name|Type|Status|Password Set
+---+-----+-------+------------+
jdoe|admin|enabled|yes
Related commands
 
create user
Create a user account.
create user --name <unique_user_name> --type <audit|admin> [--status <enabled|disabled>]
 
Command modes
All products.
Usage guidelines
The user name must:
*
*
*
Examples
(config)# create user --name jdoe --status enabled --type audit
Related commands
 
set user
Update user account settings.
set user --name <unique_user_name> --type <audit|admin> [--status <enabled|disabled>] [--password]
 
The password parameter activates an interactive menu, allowing you to specify the account password.
Command modes
All products.
Examples
(config)# set user --name jdoe --password --status enabled --type audit
Related commands
 
delete user
Delete a user account.
delete user [--name <unique_user_name>]
 
Command modes
All products.
Examples
(config)# delete user --name jdoe
Related commands
 

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Copyright 2020 Forcepoint. All rights reserved.