Change local user passwords on S series switch


On an S series switch, except S1700, there are two methods to change the local user password:
- The administrator can change passwords for other local users.
  A local user can change the attributes (including password, level, max access number, and validity period) for the local users with lower levels.
  For example, to change the password of local user admin to huawei@123.
  [HUAWEI] aaa
  [HUAWEI-aaa] local-user admin password cipher huawei@123
- The local user changes its own password.
  To ensure password security, a low-level administrator can run the local-user change-password command after passing authentication to change its own password.  
  <HUAWEI> local-user change-password
  Please configure the login password (8-128)
  It is recommended that the password consist of at least 2 types of 
  characters, including lowercase letters, uppercase letters, numerals
  and special characters. 
  Please enter old password: //Enter the old password.
  Please enter new password: //Enter the new password.
  Please confirm new password:  //Confirm the new password.
- Only the users passing local authentication can change their own passwords.
- The local-user change-password command only changes local user passwords, but does not save configurations. The passwords are saved as local-user password.If you do not enter the old, new, or confirm password within the timeout interval (30 seconds), the password change operation is canceled. You can also press Ctrl+C to cancel the password change operation.

Other related questions:
Default BootROM password change on S series switches
For S series switches except S1700 switches, you can perform the following steps to change the default BootROM password:
1. Change the default password in the BootROM menu. (1) Log in to the device through the console port and restart the device.
(2) When information similar to "Press Ctrl+B to enter Boot Menu�? or ""Press Ctrl+B or Ctrl+E to enter BootROM menu�?" is displayed

Whether the level of the local user of the S series switches affects data communication
S series switches (except S1700) configuring the local user level only affects the local user's login management of the device, and has no effect on data communication.

Delete local users from S series switches
Run the undo local-user user-name command on an S series switch (except the S1700 switch) to delete a local user. For example, delete the local user user1@vipdomain. [HUAWEI] aaa [HUAWEI-aaa] undo local-user user1@vipdomain Each user has its own user level, and the user can create, delete, or change users whose user level is lower than its. You can run the display local-user command to view the user level.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top