Contents
1 Description
This instruction describes how to delete an account policy for local Operation and Maintenance (O&M) user accounts.
2 Procedure
2.1 Delete Account Policy
Prerequisites
- No documents are required.
- No tools are required.
- The following conditions must apply:
- The user has sufficient access rights to perform the task, for example, the user has System Security Administrator role.
- An Ericsson Command-Line Interface (ECLI) session in Exec mode is in progress.
- The account policy is known.
Steps
- Navigate to the AccountPolicy Managed
Object (MO), for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,AccountPolicy=1
- Show the user accounts that
use this account policy:
(AccountPolicy=1)>show reservedByAccount
The following is an example output:
"ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,⇒ UserManagement=1,LocalAuthenticationMethod=1,⇒ UserAccountM=1,UserAccount=joedoe" "ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,⇒ UserManagement=1,LocalAuthenticationMethod=1,⇒ UserAccountM=1,UserAccount=doegeo"
- Change AccountPolicy for a user account.
- Navigate to the UserAccount MO,
for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,UserAccountM=1,UserAccount=joedoe
- Enter Config mode:
(UserAccount=joedoe)>configure
- Change the account policy for
the user account, by setting the reference to the appropriate AccountPolicy MO, for example:
(config-UserAccount=joedoe)>accountPolicy="ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,AccountPolicy=2"
- Commit the settings:
(config-UserAccount=joedoe)>commit
- Are there more user accounts to change that was listed
in step 2?
Yes: Proceed with Step 3.
No: Continue with next step.
- Navigate to LocalAuthenticationMethod MO, for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1
- Enter Config mode:
(LocalAuthenticationMethod=1)>configure
- Delete the AccountPolicy MO,
for example:
(config-LocalAuthenticationMethod=1)>no AccountPolicy=1
- Commit the deletion:
(config-LocalAuthenticationMethod=1)>commit
- Verify the deletion:
(LocalAuthenticationMethod=1)>show
The following is an example output:
LocalAuthenticationMethod=1 userLabel="Local Authentication Method" AccountPolicy=2 AdministratorAccount=la-admin PasswordPolicy=2 PasswordQuality=1 UserAccountM=1