CS 1000 CPPPM Co-Resident rls 6 Default Password

[lexer]

Hi

I've got CS 1000 CP PM Co-resident Call Server and Signaling Server rls 6 (Linux) This is an upgrade from an option 11c rls 4.5, I installed the backup from the 11c rls 4.5, I made the upgrade 4 moths ago, I've got user account "admin" for accessing the system Call server rls 6, I was accesing the pbx without any problems, but now When I try to enter for programming I received the following message:

SEC116 User ADMIN has been allowed to log in using an emergency account.

and If I logout I cannot enter again, I've got to reset the PBX for accesing again using "admin" account. I'm trying to access the pbx using admin1 and admin2 accounts and the default passwords "0000" and tried the admin1 and admin1 password from the rls 4.5 but I cannot enter (using the admin1 and admin2 account). My question is:
Do The admin1 and admin2 default passwords were changed for CS 1000 CP PM Co-resident Call Server and Signaling Server rls 6 (Linux)?

Any ideas?

Thanks!!

 

[lexer]

I've forgot to mention that this is the information from LD 22 -- PWD:

>ld 22
PT2000
MARP NOT ACTIVATED


REQ prt
TYPE pwd
PWD
PSWD_COMP OFF
LOUT 20
FLTH 3
LOCK 1
FLTA NO
AUDT NO
LLID NO

USER_NAME PDT2 **INSECURE**
TYPE PDT2

USER_NAME PDT1 **INSECURE**
TYPE PDT1

USER_NAME ADMIN2 **INSECURE**
TYPE PWD2
ACCT YES
PDT NO

USER_NAME ADMIN1 **INSECURE**
TYPE PWD1
PDT NO

REQ end

I tried to change the admin1 and admin2 password accesing with admin account but when I tried the admin1 and admin2 passwords didn't work

 

[scotthdiv]

As soon as you join the security domain, the admin1 and admin2 passwords become disabled and you need to use the usernames and passwords that have been created in the UCM.

It sounds to me like something isn't joined to the security domain correctly. Try Reg UCM Sys in LD 117 and/or regenerating the security token through UCM.

 

[KillianK]

1, Reset secret manager 2. Regenerate the secure Shell, are these commands in 117. 3 Unregister and Register to security domain

 

[lexer]

Thanks for your answers, I'm going to try and let you know

 

[bluethread]

May be due to password ageing. log on to ucm with admin password and if it prompts you to change, do so. log on to switch wsith new password

BLUETHREAD

 

[lexer]

I could access the UCM web page using the "nortel" account, I cannot access UCM using "admin" account.
When I enter UCM web page using nortel account I've got two options:
* Demote Security Server
* Local administration.

I cannot access CLI using admin account neither nortel account.
what is to Reset secret manager?

Thanks!!

 

[KillianK]

ld 117

SECRET DEFAULT
Set the Secret to default value.
SECRET SET
Define the Secret
SECRET STAT
Print the Secret
SECURITY DOMAIN JOIN basic-6.00
Establish mutual trust with the UCM Primary Security Server.
SECURITY DOMAIN LEAVE basic-6.00
Remove the UCM Primary Security Server mutual trust information
from the device.
SECURITY DOMAIN MODE [MANUAL | USER | AUTO] basic-6.00
Configure the UCM security domain management mode on the Call
Server.
Where:
• MANUAL = all devices must join the UCM security domain using
local CLI commands
• USER = the user is prompted with a list of all currently active
devices and is asked to confirm their addition to the UCM
security domain
AUTO = The credentials for the user accounts assigned the
necessary role are cached on the Call Server so that they can be
sent at a later time to any device that the Call Server requires to join the UCM security domain
SECURITY DOMAIN STAT basic-6.00
Display the IP address and fingerprint of the UCM Primary Security
Server.

 

[lexer]

From LD 117 I used the command: "Leave UCMSecurity Device"

I removed devices from the security UCM, from LD 117 I tried to enter the command: "Register UCMSecurity Device" but it doesn't work.
I entered in the MGC card through port 0 using Ctrl LDB, I'm using user and password for pdt2, but When I enter the command: "joinSecDomain" I receive this message:

02/02/2011 11:48:06 SEC0019 Logged in user: Logged in user: pdt2 doesn't have SEC_ADMIN privilege. doesn't have SEC_ADMIN privilege.

I can't enter in the MGC controller using admin, neither nortel or root passwords.
When The MGC is registed in the UCM, the passwords and users for entering in the MGC is the same as the CallServer?

thanks

 

[nortel007]

1. When MGC is registered, "admin" should work for PBX and MGC
2. Unregister PBX from security domain,do EDD and now you should able to login to PBX and MGC with admin1 and admin2 password which was on 11C database.
3. Join CS to security domain ( don't do EDD at the moment)
4. Login to MGC CLI via admin2 account and register to securit domain.

NOTE: I am not sure about rls 6 but on release 7, you don't need to run any command on MGC. You can join MGC to security domain by command LD 117 -- register ucmsecurity device <MGC IP> and then enter primary Security IP, user and password. If it fail on TLAN IP of UCM, try ELAN IP of UCM.


Hope this help..