Contents
1 Introduction
This document describes how to delete an account policy.
1.1 Prerequisites
This section describes the prerequisites, which must be fulfilled before using the procedure.
1.1.1 Conditions
The following conditions must apply:
- The user has sufficient access rights to perform the task, for example, the user has System Security Administrator role.
- An Ericsson Command-Line Interface (ECLI) session in Exec mode is in progress.
- The account policy is known.
2 Procedure
To delete an account policy instance:
- Navigate to the AccountPolicy Managed
Object (MO), for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,AccountPolicy=1
- Show the user accounts that
use this account policy:
(AccountPolicy=1)>show reservedByAccount
The following is an example output:
"ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,⇒ UserManagement=1,LocalAuthenticationMethod=1,⇒ UserAccountM=1,UserAccount=joedoe" "ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,⇒ UserManagement=1,LocalAuthenticationMethod=1,⇒ UserAccountM=1,UserAccount=doegeo"
- Change AccountPolicy for a user account.
- Navigate to the UserAccount MO,
for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,UserAccountM=1,UserAccount=joedoe
- Enter Config mode:
(UserAccount=joedoe)>configure
- Change the account policy for
the user account, by setting the reference to the appropriate AccountPolicy MO, for example:
(config-UserAccount=joedoe)>accountPolicy="ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1,AccountPolicy=2"
- Commit the settings:
(config-UserAccount=joedoe)>commit
- Are there more user accounts to change that was listed
in step 2?
Yes: Proceed with Step 3.
No: Continue with next step.
- Navigate to LocalAuthenticationMethod MO, for example:
>dn ManagedElement=NODE06ST,SystemFunctions=1,SecM=1,UserManagement=1,LocalAuthenticationMethod=1
- Enter Config mode:
(LocalAuthenticationMethod=1)>configure
- Delete the AccountPolicy MO,
for example:
(config-LocalAuthenticationMethod=1)>no AccountPolicy=1
- Commit the deletion:
(config-LocalAuthenticationMethod=1)>commit
- Verify the deletion:
(LocalAuthenticationMethod=1)>show
The following is an example output:
LocalAuthenticationMethod=1 userLabel="Local Authentication Method" AccountPolicy=2 AdministratorAccount=la-admin PasswordPolicy=2 PasswordQuality=1 UserAccountM=1