No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

eSight V300R010C00 Maintenance Guide 07

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Password Change Overview

Password Change Overview

Various systems provide default users and their initial passwords and assign different operation rights to these default users. Getting familiar with the users and rights is convenient for operations. To improve system security, change initial passwords immediately when performing the following operations.

The password changing overview includes all initial users. If users whose passwords need to be changed are added, for example, during system O&M, add the users to the overview by yourself.

Keep the files related to the new passwords secure to avoid security risks caused by password disclosure.

Huawei Server Administrators

Default administrator accounts and passwords are provided for delivered 2288H V5, RH5885H V3, and TaiShan 2280 V2 servers.

BIOS Administrators

Server

User

Initial State

Initial Password

Description

Password Change

Effective Mode

2288H V5

-

Enabled

Admin@9000

BIOS administrator password.

For details, see the Huawei Rack Server Product Documentation. To obtain the document, visit the following website:

  • Support-E website (enterprise)

http://support.huawei.com/hedex/hdx.do?docid=EDOC1000163556&lang=zh

  • Support website (carrier)

http://support.huawei.com/hedex/hdx.do?docid=DOC1000401171&lang=zh

Immediately

NOTE:

To change the BIOS password, you need to restart the server, which will cause eSight service interruption.

RH5885H V3

-

Enabled

Huawei12#$

BIOS administrator password.

For details, see the Huawei Rack Server Product Documentation. To obtain the document, visit the following website:

  • Support-E website (enterprise)

http://support.huawei.com/ehedex/hdx.do?docid=DOC1000010815&lang=zh

  • Support website (carrier)

http://support.huawei.com/hdx/hdx.do?docid=DOC1000154623&lang=zh

Immediately

NOTE:

To change the BIOS password, you need to restart the server, which will cause eSight service interruption.

TaiShan 2280 V2

-

Enabled

Admin@9000

BIOS administrator password.

For details, see the TaiShan 2280 V2 Server V100R001 User Guide. To obtain the document, visit the following website:

  • Support-E website (enterprise)

https://support.huawei.com/enterprise/zh/doc/EDOC1100088652

  • Support website (carrier)

https://support.huawei.com/carrier/docview?nid=DOC1100525184

Immediately

NOTE:

To change the BIOS password, you need to restart the server, which will cause eSight service interruption.

iMana/iBMC Administrators

Server

User

Initial State

Initial Password

Description

Password Change

Effective Mode

2288H V5

Administrator

Enabled

Admin@9000

iMana/iBMC administrator, which is used to remotely maintain servers.

For details, see the Huawei Rack Server Product Documentation. To obtain the document, visit the following website:

  • Support-E website (enterprise)

http://support.huawei.com/hedex/hdx.do?docid=EDOC1000163556&lang=zh

  • Support website (carrier)

http://support.huawei.com/hedex/hdx.do?docid=DOC1000401171&lang=zh

Immediately

RH5885H V3

root

Enabled

Huawei12#$

iMana/iBMC administrator, which is used to remotely maintain servers.

For details, see the Huawei Rack Server Product Documentation. To obtain the document, visit the following website:

  • Support-E website (enterprise)

http://support.huawei.com/ehedex/hdx.do?docid=DOC1000010815&lang=zh

  • Support website (carrier)

http://support.huawei.com/hdx/hdx.do?docid=DOC1000154623&lang=zh

Immediately

TaiShan 2280 V2

Administrator

Enabled

Admin@9000

iBMC administrator, which is used to remotely maintain servers.

For details, see the TaiShan 2280 V2 Server V100R001 User Guide. The path for obtaining the document is as follows:

  • Support-E website (enterprise)

https://support.huawei.com/enterprise/zh/doc/EDOC1100088652

  • Support website (carrier)

https://support.huawei.com/carrier/docview?nid=DOC1100525184

Immediately

-

Enabled

Admin@9000

iBMC U-Boot data user.

Operating System Users

This section describes all default operating system users of eSight and the initial passwords and rights of the users.

Table 5-1 Windows users

User

Initial State

Initial Password

Login Method

Description

Password Change

Effective Mode

Administrator

Enabled

Administrator account that is automatically created during the installation of the operating system. You can set the password.

NOTE:

The initial password is Changeme123 in the pre-installation scenario.

Local login

NOTE:

Local login is supported by default. To support remote login, enable the remote desktop function.

The Administrator user is a default user of the Windows operating system. As the system administrator, it has the highest operation rights on the operating system. This user can control all operating system resources, create other users, assign rights to the users, and use all the functions provided by the operating system. In addition, the Administrator user can install or uninstall the eSight server applications, and start or stop eSight services.

NOTE:

After security hardening, the user name changes to SWMaster.

For details about how to verify the configurations, see Changing the Password of a Windows Operating System User.

Immediately

ossuser

Enabled

Changeme_123

Local login

NOTE:

Local login is supported by default. To support remote login, enable the remote desktop function.

The ossuser account, automatically created by eSight, performs routine operation and maintenance (O&M) for the eSight server. This user is a remote maintenance proxy user provided in the distributed server deployment scenario. It can back up and restore data on the distributed server through the maintenance tool.

NOTE:

After changing the password on the standby server, you need to synchronize the configuration on the maintenance tool.

guest

Locked

None

Login prohibited

Guest user. By default, this user is disabled.

NOTE:

After security hardening, the user name changes to SWVisitor.

Table 5-2 SUSE Linux operating system users

User

Initial State

Initial Password

Login Method

User Group

Home Directory

Description

Password Change

Effective Mode

root

Enabled

Administrator account that is automatically created during the installation of the operating system. You can set the password.

NOTE:

The password is Changeme123 in the preinstallation scenario.

Remote and local login

NOTE:

Remote login is disabled after security hardening.

root

/root

The root user is the default Linux operating system user. It has the highest operation rights of the Linux operating system. This user can control all operating system resources, create users, assign rights to the users, and use all the functions provided by the operating system. The installation and uninstallation of the eSight server application software must be performed by the root user.

For details about how to verify the configurations, see Changing the Password of a Linux Operating System User.

Immediately

ossuser

Enabled

Changeme_123

Remote and local login

ossgroup

/ossuser

The ossuser account, automatically created by eSight, performs routine operation and maintenance (O&M) for the eSight server. This user can remotely log in to the server through SSH and upload or download files through SFTP. In the distributed deployment scenario, the ossuser user is used to monitor and maintain the distributed server. You can use this user in the maintenance tool to back up and restore data of the distributed server.

NOTE:

After changing the password on the standby server, you need to synchronize the configuration on the maintenance tool.

rabbitmq

Enabled

The password is specified when the rabbitmq user is created.

Remote and local login

rabbitmq

/opt

This user is used for logging in to the OpenStack RabbitMQ server.

oracle

Locked

The password is automatically created during the Oracle database installation. The default password is empty.

Login prohibited

dba

/home/oracle

The Oracle installation tool automatically creates the oracle user. The default password is empty and the user is locked by the security hardening tool. You are not allowed to log in to the system as the oracle user directly. You can only run the su command to switch from a user to the oracle user. The oracle user is used to maintain the Oracle database in the operating system, such as starting and stopping the database.

Default user of the Oracle database.

Default user of the Oracle database.

at

Locked

None

Login prohibited

at

/var/spool/at jobs

This user is used to execute the daemon process for batch operations.

Default user of the operating system, which is not used by eSight.

Default user of the operating system, which is not used by eSight.

bin

Locked

None

Login prohibited

bin

/bin

This user manages most commands and owns executable files of user commands.

daemon

Locked

None

Login prohibited

daemon

/sbin

This user is a system user who controls background processes and executes system processes.

ftp

Locked

None

Login prohibited

ftp

/srv/ftp

This user is an FTP user who transfers files using FTP.

ftpsecure

Locked

None

Login prohibited

nogroup

/var/lib/empty

Secure FTP user.

games

Locked

None

Login prohibited

users

/var/games

This user is used to play games.

gdm

Locked

None

Login prohibited

gdm

/var/lib/gdm

GDM is the GUI of Linux and the manager of the GNOME display environment. The user can manage local and remote X servers through the X Display Manager Control Protocol (XDMCP).

haldaemon

Locked

None

Login prohibited

haldaemon

/var/run/hald

This user is used to construct and test the multi-user SQL application.

lp

Locked

None

Login prohibited

lp

/var/spool/lpd

User for printing service account or LPD subsystem.

mail

Locked

None

Login prohibited

mail

/var/spool/clientmqueue

User who possesses the processes and files related to mails.

man

Locked

None

Login prohibited

man

/var/cache/man

This user is used to view various reference documents in the system.

messagebus

Locked

None

Login prohibited

messagebus

/var/run/dbus

This user is used to run the interprocess communication (IPC) service in the Linux operating system to interact with the dBus.

news

Locked

None

Login prohibited

news

/etc/news

User who possesses the processes and files related to USENET.

nobody

Locked

None

Login prohibited

nobody

/var/lib/nobody

This user is an anonymous user who allocates NFS servers during request creation when it is independent from user root. The nobody account does not require special permissions when distributing software processes.

ntp

Locked

None

Login prohibited

ntp

/var/lib/ntp

This user is used to execute the NTP daemon process. The NTP daemon updates system time through the Internet and ensures time synchronization between the system and a precise event source.

openslp

Locked

None

Login prohibited

daemon

/var/lib/empty

User for running the OpenSLP service.

polkitd

Locked

None

Login prohibited

polkitd

/var/lib/polkit

User for running the Polkit service.

postfix

Locked

None

Login prohibited

postfix

/var/spool/postfix

User who provides a mail server option except sendmail.

pulse

Locked

None

Login prohibited

pulse

/var/lib/pulseaudio

User for running the PulseAudio service.

nscd

Locked

None

Login prohibited

nscd

/run/nscd

User for running the NSCD service.

rpc

Locked

None

Login prohibited

nogroup

/var/lib/empty

User for running the RPC service.

rtkit

Locked

None

Login prohibited

rtkit

/var/lib/empty

User for running the RtKit service.

scard

Locked

None

Login prohibited

scard

/var/run/pcscd

User for reading the Smart card.

systemd-bus-proxy

Locked

None

Login prohibited

systemd-bus-proxy

/

System user.

systemd-timesync

Locked

None

Login prohibited

systemd-timesync

/

System user.

uucp

Locked

None

Login prohibited

uucp

/etc/uucp

User who possesses Unix to Unix Copy (UUCP) tools and files and binds database files and objects for UUCP.

vnc

Locked

None

Login prohibited

vnc

/var/lib/empty

User for running the VNC service.

wwwrun

Locked

None

Login prohibited

www

/var/lib/wwwrun

User for running the Apache service.

sshd

Locked

None

Login prohibited

sshd

/var/lib/sshd

User for executing the SSH protocol daemon process. SSH allows remote users to log in to a host to run programs, implementing secure remote host management.

statd

Locked

None

Login prohibited

nogroup

/var/lib/nfs

User for running the NFS service.

srvGeoClue

Locked

None

Login prohibited

nogroup

/var/lib/srvGeoClue

User for running the GeoClue D-Bus service.

Table 5-3 EulerOS

User Name

Initial State

Initial Password

Login Method

User Group

Home Directory

Description

Password Change

Effective Mode

root

Enabled

Changeme_123

Remote and local login

root

/root

The root user is the default EulerOS operating system user. It has the highest operation rights of the EulerOS operating system. This user can control all operating system resources, create users, assign rights to the users, and use all the functions provided by the operating system. The installation and uninstallation of the eSight server application software must be performed by the root user.

For details, see Changing the Password of a Linux Operating System User.

Immediately

ossuser

Enabled

Changeme_123

Remote and local login

ossgroup

/ossuser

The ossuser account, automatically created by eSight, performs routine operation and maintenance (O&M) for the eSight server. This user can remotely log in to the server through SSH and upload or download files through SFTP. In the distributed deployment scenario, the ossuser user is used to monitor and maintain the distributed server. You can use this user in the maintenance tool to back up and restore data of the distributed server.

NOTE:

After changing the password on the standby server, you need to synchronize the configuration on the maintenance tool.

bin

Locked

None

Login prohibited

bin

/bin

Bin user.

Default user of the operating system, which is not used by eSight.

Default user of the operating system, which is not used by eSight.

daemon

Locked

Login prohibited

daemon

/sbin

Daemon user.

adm

Locked

Login prohibited

adm

/var/adm

Administrator user.

lp

Locked

Login prohibited

lp

/var/spool/lpd

Print service user.

sync

Locked

Login prohibited

root

/sbin

Synchronization service user.

shutdown

Locked

Login prohibited

root

/sbin

Shutdown service user.

halt

Locked

Login prohibited

root

/sbin

Shutdown service user.

mail

Locked

Login prohibited

mail

/var/spool/mail

Mail service user.

operator

Locked

Login prohibited

root

/root

Operator user.

games

Locked

Login prohibited

users

/usr/games

Game user.

ftp

Locked

Login prohibited

ftp

/var/ftp

FTP user.

nobody

Locked

Login prohibited

nobody

/

Nobody user.

systemd-network

Locked

Login prohibited

systemd-network

/

Systemd network management user. The systemd-networkd is a system service for managing the network. It detects and configures network devices and creates virtual network devices.

dbus

Locked

Login prohibited

dbus

/

System message bus user.

rpc

Locked

Login prohibited

rpc

/var/lib/rpcbind

RPC service user.

tss

Locked

Login prohibited

tss

/dev/null

User for running the tcsd process.

sssd

Locked

Login prohibited

sssd

/

SSSD service user.

polkitd

Locked

Login prohibited

polkitd

/

User for running the polkitd service.

ntp

Locked

Login prohibited

ntp

/etc/ntp

NTP service user.

ldap

Locked

Login prohibited

ldap

/var/lib/ldap

OpenLDAP service user.

chrony

Locked

Login prohibited

chrony

/var/lib/chrony

Chrony service user.

sshd

Locked

Login prohibited

sshd

/var/empty/sshd

SSH service user.

dhcpd

Locked

Login prohibited

dhcpd

/

DHCP service user.

saslauth

Locked

Login prohibited

saslauth

/run/saslauthd

Saslauth service user.

nscd

Locked

Login prohibited

nscd

/

User used by the LDAP cache daemon.

Database Users

This section describes all default database users supported by eSight and the initial passwords and rights of the users. All users described in this section support local and remote login.

NOTE:

If eSight is installed, database user passwords must be changed using the maintenance tool. Otherwise, eSight functions will be abnormal.

Table 5-4 SQL Server

User

Initial State

Initial Password

Description

Password Change

Effective Mode

sa

NOTE:

By default, the administrator created for SQL Server is sa. You can change the administrator user name during installation.

Enabled

The password is specified during SQL Server installation.

NOTE:

The initial password is Changeme123 in the pre-installation scenario.

The sa user is the default user account of the SQL Server database. This user is the system administrator of the database and has all the database rights. This user controls all the database resources, creates user accounts and assign rights to them, and performs all the operations supported by the database. During the eSight installation, the sa user is used to create the eSight database and eSight database users.

NOTE:

The user password cannot contain the exclamation mark (!). Otherwise, the database cannot be connected using the user and password.

Changing the Password of a Database User

Immediately

commonuser

Enabled

The password is specified when eSight is installed.

NOTE:

The initial password is Changeme_123 in the pre-installation scenario.

The commonuser user is a database user of the NMS.

Changing the Password of a Database User

Immediately

##MS_PolicyEventProcessingLogin##

Disabled

None

Built-in user of the SQL Server.

Default database user, which is not used by eSight.

Default database user, which is not used by eSight.

##MS_PolicyTsqlExecutionLogin##

Disabled

NT AUTHORITY\SYSTEM

Enabled

Built-in user of the SQL Server. This user is disabled after the database is hardened.

NT SERVICE\MSSQLSERVER

Enabled

NT SERVICE\SQLSERVERAGENT

Enabled

NT SERVICE\SQLWriter

Enabled

NT SERVICE\Winmgmt

Enabled

Table 5-5 MySQL

User

Initial State

Initial Password

Description

Password Change

Effective Mode

dbadmin

Enabled

The initial password is specified when eSight is installed.

NOTE:

The initial password is Changeme123 in the pre-installation scenario.

The dbadmin user is the default user account of the MySQL database. This user is the system administrator of the database and has all the database rights. This user controls all the database resources, creates user accounts and assign rights to them, and performs all the operations supported by the database. During the eSight installation, the dbadmin user is used to create the eSight database and eSight database users.

Changing the Password of a Database User

Immediately

commonuser

Enabled

The initial password is specified when eSight is installed.

NOTE:

The initial password is Changeme_123 in the pre-installation scenario.

The commonuser user is a database user of the NMS.

Changing the Password of a Database User

Immediately

Table 5-6 GaussDB

User

Initial State

Initial Password

Description

Password Change

Effective Mode

sys

Enabled

Changeme123

The sys user is the default user account of the GaussDB database. This user is the system administrator of the database and has all the database rights. This user controls all the database resources, creates user accounts and assign rights to them, and performs all the operations supported by the database. During the eSight installation, the sys user is used to create the eSight database and eSight database users.

Changing the Password of a Database User

Immediately

commonuser

Enabled

Changeme_123

The commonuser user is a database user of the NMS.

Changing the Password of a Database User

Immediately

CONFFILE

Enabled

The password must be the same as the password of the COMMONUSER user.

Configuration file management database user.

The user password is synchronously changed when the COMMONUSER user password is changed.

Immediately

ENTETLDB

Enabled

UniBI report management database user.

ESIGHTIT

Enabled

Storage, server, and host access management database user.

ESIGHTITHASMT

Enabled

Storage, server, and host health status management database user.

ESIGHTITAPP

Enabled

IT device management database user.

EWL

Enabled

eLTE primary device management database user.

FMEXT

Enabled

User of the extended alarm management database.

GCLI

Enabled

Database user of the intelligent configuration tool.

HEALTHMGR

Enabled

Database user of OLT device health status management.

IEMPEAM

Enabled

Database user of NE access management.

IPCA

Enabled

iPCA management database user.

IPTOPOMGR

Enabled

IP topology database user.

NAMESERVICE

Enabled

Management user of the domain name management database.

NASMGR

Enabled

Network traffic management database user.

NEMGR

Enabled

Network device management database user.

OMSAUTODIS

Enabled

Automatic discovery management database user.

OMSCM

Enabled

Configuration management database user.

OMSCDC

Enabled

Data center management database user.

OMSFM

Enabled

Fault management database user.

OMSMODEL

Enabled

Resource management database user.

OMSPM

Enabled

Performance management database user.

OMSSM

Enabled

Security management database user.

OMSSYS

Enabled

System management database user.

PMEXT

Enabled

Database user of the scheduled performance data collection task.

PNPMGR

Enabled

Zero-touch provisioning database user.

PONDB

Enabled

PON management database user.

CONFIGFILEMGR

Enabled

PON management database user.

UPGRADEMANAGER

Enabled

PON management database user.

FMEXTACCESS

Enabled

User of the extended PON alarm management database.

PMEXTACCESS

Enabled

Database user of the scheduled PON performance data collection task.

NEMGRACCESS

Enabled

PON device management database user.

QOS

Enabled

QoS management database user.

REPORTMGR

Enabled

Network report management database user.

SLA

Enabled

SLA management database user.

STAMGR

Enabled

Management user of the access user management database.

SVCCONFIGMGR

Enabled

Service configuration management database user.

SVF

Enabled

SVF management database user.

TAM

Enabled

Database user of network device access management.

TMS

Enabled

TR069 terminal management database user.

UPGRADEMGR

Enabled

Device software management database user.

VIRRESMGR

Enabled

Virtual resource management database user.

VLANMGR

Enabled

VLAN management database user.

WLAN

Enabled

WLAN management database user.

ESIGHTMIM

Enabled

Service large-screen database user.

COMMON

Enabled

Database user for synchronizing device service information.

OPENSTACK

Enabled

Virtual resource OpenStack management database user.

VOIP

Enabled

Audio quality database user.

AUDITMGR

Enabled

None

Compliance check database user.

Default database user, which is not used by eSight.

Default database user, which is not used by eSight.

PUBLIC

Locked

User automatically created by the database. This user stores the information about database objects that all users can access. This user is prohibited from logging in to the client.

Table 5-7 Oracle

User

Initial State

Initial Password

Description

Password Change

Effective Mode

SYS

Enabled

The initial password is specified when eSight is installed.

NOTE:

The initial password is Changeme123 in the pre-installation scenario.

The SYS user is a default user provided by the Oracle. It is the system administrator of the Oracle and has the highest rights of the database.

Changing the Password of a Database User

Immediately

SYSTEM

Enabled

The initial password is specified when eSight is installed.

NOTE:

The initial password is Changeme123 in the pre-installation scenario.

The SYSTEM user is a default user provided by the Oracle. It is the system administrator of the Oracle. This user controls all the database resources, creates user accounts and assign rights to them, and performs all the operations supported by the database. During the eSight installation, the SYSTEM user is used to create the eSight database and eSight database users.

Changing the Password of a Database User

Immediately

COMMONUSER

Enabled

The initial password is specified when eSight is installed.

NOTE:

The initial password is Changeme_123 in the pre-installation scenario.

The COMMONUSER user is a database user of the NMS.

Changing the Password of a Database User

Immediately

CONFFILE

Enabled

The password must be the same as the password of the COMMONUSER user.

Configuration file management user.

The user password is synchronously changed when the COMMONUSER user password is changed.

Immediately

ENTETLDB

Enabled

UniBI report management user.

ESIGHTIT

Enabled

Storage, server, and host access management database user.

ESIGHTITHASMT

Enabled

Storage, server, and host health status management database user.

ESIGHTITAPP

Enabled

IT device management database user.

EWL

Enabled

eLTE primary device management database user.

EIMS

Enabled

eIMS device management database user.

FMEXT

Enabled

User of the extended alarm management database.

GCLI

Enabled

Database user of the intelligent configuration tool.

HEALTHMGR

Enabled

Database user of OLT device health status management.

IEMPEAM

Enabled

Database user of NE access management.

IOT

Enabled

IoT device management database user.

TRACEDB

Enabled

Signaling tracing database user.

IPCA

Enabled

iPCA management database user.

IPTOPOMGR

Enabled

IP topology database user.

L3VPNMGR

Enabled

MPLS VPN management database user.

MPLSTEMGR

Enabled

MPLS Tunnel management database user.

NAMESERVICE

Enabled

Management user of the domain name management database.

NASMGR

Enabled

Network traffic management database user.

NEMGR

Enabled

Network device management database user.

OMSAUTODIS

Enabled

Automatic discovery management database user.

OMSCM

Enabled

Database user for configuration management.

OMSCDC

Enabled

Data center management database user.

OMSFM

Enabled

Database user for fault management.

OMSMODEL

Enabled

Resource management database user.

OMSPM

Enabled

Performance management database user.

OMSSM

Enabled

Security management database user.

OMSSYS

Enabled

System management database user.

PMEXT

Enabled

Database user of the scheduled performance data collection task.

PNPMGR

Enabled

Zero-touch provisioning database user.

PONDB

Enabled

PON management database user.

CONFIGFILEMGR

Enabled

PON management database user.

UPGRADEMANAGER

Enabled

PON management database user.

FMEXTACCESS

Enabled

User of the extended PON alarm management database.

PMEXTACCESS

Enabled

Database user of the scheduled PON performance data collection task.

NEMGRACCESS

Enabled

PON device management database user.

QOS

Enabled

QoS management database user.

REPORTMGR

Enabled

Network report management database user.

SLA

Enabled

SLA management database user.

STAMGR

Enabled

Management user of the access user management database.

SVCCONFIGMGR

Enabled

Service configuration management database user.

SVF

Enabled

SVF management database user.

TAM

Enabled

Database user of network device access management.

TMS

Enabled

TR069 terminal management database user.

UPGRADEMGR

Enabled

Device software management database user.

VIRRESMGR

Enabled

Virtual resource management database user.

VLANMGR

Enabled

VLAN management database user.

WLAN

Enabled

WLAN management database user.

ESIGHTMIM

Enabled

Service large-screen database user.

COMMON

Enabled

Database user for synchronizing device service information.

OPENSTACK

Enabled

Virtual resource OpenStack management database user.

APPQOSSYS

Locked

None

Default database user. The user is locked after the database installation.

Default database user, which is not used by eSight.

Default database user, which is not used by eSight.

AUDITMGR

Enabled

Compliance check database user.

DIP

Locked

Default database user. The user is locked after the database installation.

OUTLN

Locked

Default database user. The user is locked after the database installation.

WMSYS

Locked

Default database user. The user is locked after the database installation.

eSight System Users

This section describes all default users of eSight and the initial passwords and rights of the users. All users described in this section support local and remote login.

Table 5-8 eSight system users

Type

User

Initial Password

Description

Password Change

Effective Mode

eSight

-

admin

Changeme123

The admin user is the default administrator provided by eSight. The admin user has the management rights of all devices and operation rights of all eSight clients.

Changing the eSight User Password

Immediately

openApiUser

Changeme_123

The openApiUser user is used to invoke the open API to access open eSight resources and develop other functions based on existing ones.

Maintenance Tools

sys

Changeme123

The sys user is the unique user of the maintenance tool. The sys user can manage the eSight server and perform all operations on the maintenance tool.

Changing the Maintenance Tool User Password

Immediately

Northbound

SNMPv3

The password is defined by an upper-layer NMS user.

The password is defined by an upper-layer NMS user.

This user is used for SNMPv3 authentication. This is not an eSight user and does not have any operation rights of eSight.

Changing the Password of a Northbound SNMPv3 User

Restart eSight.

-

SNMP Agent User

-

The user is a fixed identifier used when the upper-layer NMS performs operations on alarms, such as acknowledging, unacknowledging, and clearing alarms. This is not an eSight user and user does not have a password or any operation rights on eSight.

-

-

Southbound

FTP/SFTP/FTPS

admin

Changeme123

The admin user is the default administrator provided by the southbound FTP/FTPS/SFTP. The admin user has all the operation rights on the FTP/FTPS/SFTP function.

NOTE:

The FTP protocol has security risks. You are advised to use the secure SFTP and FTPS protocols. (FTPS provides the implicit mode and explicit mode. The explicit mode has security risks. Therefore, the implicit mode is recommended.)

Changing the Password of the FTP, FTPS, or SFTP User

Restart eSight.

Mediation

admin

Changeme_123

The admin user is the default user provided by Mediation. The admin user is used for authentication when the Med Node connects to the Med Center.

Changing the Password of the Mediation Authentication Account

Restart eSight.

Integration

SSO co-deployment

JsonName

Changeme_123

The JsonName user is for SSO co-deployment. The user is not an eSight user and is used for authentication when the internal SSO login interface is invoked.

Changing the Password for the Co-deployment SSO Account

Restart eSight.

Agile reporter integration account

admin

eSight@123

The admin account is used when eSight invokes agile reporter interfaces.

Changing the Password of an Integrated Account of Agile Reporter

Restart eSight.

JMS

JMS

iempAdmin

Changeme_123

The iempAdmin user is the default user provided by the JMS. The iempAdmin user has the JMS admin role and has the permission to operate all JMS functions.

The JMS client and JMS server use the same user iempAdmin to communicate with each other. That is, the server stores the user information. Before accessing the server, the client needs to send the user name and password to the server. The server verifies the user name and password. If the verification is successful, the client connects to the server successfully.

Changing the JMS User Password

Restart eSight.

JMX

JMX

jmxAdmin

Changeme_123

The jmxAdmin user is the default user name used for authentication during JMX communication.

The JMX client and JMX server use the same user jmxAdmin to communicate with each other. That is, the server stores the user information. Before accessing the server, the client needs to send the user name and password to the server. The server verifies the user name and password. If the verification is successful, the client connects to the server successfully.

Changing the JMX User Password

Restart eSight.

HA system

VERITAS Cluster Server (VCS)

admin

Changeme123

The admin user manages local clusters and centrally manages all local software and hardware resources.

Changing the Password of the admin User on the Veritas

Immediately

Server management

Automatic detection service

root

Huawei12#$

When the managed device sends a discovery request to eSight, the user name and password preset on eSight can be used to attempt to connect to the device that sends the request.

The root user is the default access user for eSight to automatically detect services.

Changing the Password of the Automatic Detection Service User

Immediately

SimpleOS

root

Huawei@123

eSight uses SimpleOS to communicate with and configure servers.

The root user is the default user for accessing the SimpleOS.

Changing the SimpleOS User Password

Log in to the SimpleOS again.

iMana/iBMC

eSightMgmt

Huawei12#$

eSight uses the iMana/iBMC to remotely control blade servers.

The eSightMgmt user is the default user for accessing the iMana/iBMC.

Changing the Password for an iMana/iBMC User

Restart eSight.

Switch board SNMP

eSightSwitch

Huawei12#$

eSight collects performance and alarms of switch boards through SNMP.

The eSightSwitch user is the default access user of SNMP.

Changing the Password for a Switch Board SNMP User

Update the server.

Switch board SSH/sTelnet

root

Huawei12#$

The root user is used for authentication when eSight connects to switch boards. You can log in to eSight as the root user and configure switch boards. The switch board user information on eSight must be the same as that on the switch board.

Changing the Password for a Switch Board SSH/sTelnet User

Update the server.

FTP/SFTP user

The initial user of SFTP is itSftpUser.

Huawei@123

SFTP user of the Server Device Manager.

Changing the itSftpUser User Password

Restart eSight.

FTP/SFTP user

The initial user of SFTP is batchCopyUser.

Huawei@123

SFTP user of the batch replication task configured in Server Device Manager.

Changing the batchCopyUser User Password

Restart eSight.

Storage management

FTP/SFTP user

The initial user of SFTP is itSftpUser.

Huawei@123

SFTP user of the Storage Device Manager.

Changing the itSftpUser User Password

Restart eSight.

Distributed storage user

The initial user of the distributed storage is admin.

Huawei@123

Registered user of a distributed storage device.

Modifying the Registered User of a Distributed Storage Device

Restart eSight.

Host management

SNMPv3 user password

Kaimse

Changeme123

User password of the SNMPv3 protocol.

Changing the Password for the Host Management SNMP V3 Protocol

Restart eSight.

SFTP

agentlessResult

Huawei@123

SFTP account used for agentless discovery and remotely install the agent on the Windows host.

Changing the agentlessResult User Password

Restart eSight.

eLTE management

Industry terminal

admin

Changeme123

The admin user is the default user provided by the file server of the industry terminal. The admin user is used for authentication when the industry terminal connects to the file server.

Changing the Industry Terminal File Server User Password

Immediately

admin

Changeme123

If Use default value is selected when adding industry terminals to eSight, eSight uses the user name and password for authenticating the industry terminals.

None

N/A

eNodeB, eCNS, and eSE

emscomm

ei*b+@b#6Nh(tS1j

The emscomm user is the account for eSight to connect to the eNodeB, eCNS, or eSE.

Changing the emscomm User Password

Immediately

elteFtpuser

ei*b+@b#6Nh(tS1j

The elteFtpuser user is the account for file transfer between eSight and the eNodeB, eCNS, or eSE.

Changing the elteFtpuser User Password

Restart eSight.

Core network

soapuser

soap800@HW

The soapuser user is the account for establishing SOAP connections between eSight and NEs on the core network. Only CGP devices support this user.

Changing the soapuser User Password

Immediately

Collaboration management

FTP user

ftpread

Huawei@123

FTP user used for the IAD upgrade.

Changing the Collaborations Passwords

NOTE:

For details about the configuration files, see config.properties.

Restart eSight.

ftpwrite

Huawei@123

Restart eSight.

UCCIAD

Huawei@123

FTP user used by the IAD to back up and restore configuration files.

Restart eSight.

FTPS user

ftpsread

Huawei@123

FTPS user used for the IAD upgrade.

Restart eSight.

ftpswrite

Huawei@123

Restart eSight.

UCCIAD

Huawei@123

FTPS user used by the IAD to back up and restore configuration files.

Restart eSight.

UCIPPBX

Huawei@123

User for FTPS communication between eSight and IP PBXs.

Restart eSight.

chrUser

Changeme123

FTPS user for CHR download.

Changing the Collaborations Passwords

Restart eSight.

fileserver

Changeme123

FTPS user for file transfer.

Changing the Collaborations Passwords

Restart eSight.

SFTP user

uccgpFtpuser

Huawei@123

User for synchronizing files from the CGP to eSight.

Changing the Collaborations Passwords

NOTE:

For details about the configuration files, see common.properties.

Restart eSight.

HTTPS user

eSight

eSight*123

User and password for authenticating the SBCs.

Changing the Collaborations Passwords

NOTE:

For details about the configuration files, see config.properties.

Restart eSight.

eSight

Huawei123

Password of the IVS report query channel.

Changing the Collaborations Passwords

NOTE:

For details about the configuration files, see omu_info.properties.

Restart eSight.

TR069 authentication user

eSight

eSight*123

User and password for TR069 authentication of terminals.

  1. Log in to the WebUI of eSight.
  2. Choose Resource > Collaboration Resource from the main menu.
  3. In the navigation tree on the left, choose Terminal Device Management > System Configuration.
  4. In the Terminal Account Management area, click .
  5. Enter the new password twice in the dialog box that is displayed and click OK.

Immediately

ems

ems123

TR069 file download user

eSight

eSight*123

User and password for terminals to download files through TR069.

ems

ems123

uPortal number allocation authentication user

eSight

eSight*123

Authentication user and password for the uPortal to access eSight.

Changing the Collaborations Passwords

NOTE:

For details about the configuration files, see ems_config_readWriter.properties.

Restart eSight.

STUN server authentication user

-

-

User and password for the terminal to access the STUN server.

Restart eSight.

eIMS management

CCS9000

emscomm

ei*b+@b#6Nh(tS1j

The emscomm user is a user of the CGP. It is used for establishing MML connections between eSight and eIMS NEs.

Changing the emscomm User Password

Immediately

soapuser

soap800@HW

The soapuser user is a user of the CGP. It is used for establishing SOAP connections between eSight and eIMS NEs.

Changing the soapuser User Password

Immediately

eimsFtpuser

Huawei@123

The eimsFtpuser user is the account for transferring files between eSight and eIMS NEs.

Changing the eimsFtpuser User Password

Restart eSight.

Translation
Download
Updated: 2019-06-30

Document ID: EDOC1100044373

Views: 24877

Downloads: 74

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next