What to do if you ever forget or lose the admin passwordĪvailable, and the SafeNet PED connected, powered on, and "AwaitingĬommand.", for PED authenticated (FIPS 140-3) HSMs, or have the HSM password available for password authenticated HSMs. However, connection of your SafeNet appliances to a remotely accessible terminal server could expose an additional avenue of attack, and therefore we suggest that you always avoid allowing such a potential security opening in a production environment. We do that in a test lab, where access control is not critical, and it can be very convenient when we are constantly setting up and tearing down appliances and HSM hosts for various test and verification scenarios.
The 'admin' user's account password can be changed remotely by anyone who already knows it, but the 'admin' user's password cannot be arbitrarily reset unless the person doing so has physical access to the appliance, to make the serial connection.ĬAUTION:The exception to the "physical access to the appliance" statement is where you have your appliances connected to a "terminal server" that aggregates serial links and makes them accessible via telnet or similar.
Appliance Administration Guide > Users and Passwords > Recover or Reset the Admin Account Password
0 kommentar(er)
