ScreenOS Firewalls (NOT SRX)
Reply
Regular Visitor
Ken-Accuvant
Posts: 9
Registered: ‎04-07-2009
0

Remote auth Server question

I have a SSG-520M setup to use RADIUS for admin auth.

Remote Server Settings is configured for the remote Auth server to have priority, and fallback to permit root and non-root.

Accept remotely authenticated ROOT privileged admins is not checked.

 

We just realized that whoever setup the firewall initially, left the default root account alone. It's still netscreen/netscreen.

 

Question is how can I change the default root account name and password, if I can't login with that account while RADIUS is functional?

 

I'd prefer a non-impacting approach to this, if possible.

 

Thanks.

Super Contributor
terosa
Posts: 177
Registered: ‎10-26-2010
0

Re: Remote auth Server question

Hi,

 

Have you tried console? Another way might be one I have used with switches: Close the firewall rule which accepts the switch to query RADIUS-server and then it will fallback for local and you can login with local account. This of course only works if you have local userbase as fallback.

Regards,
Tero S
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.