home

Supported platforms

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

Creating a login user account

This section presents a sample configuration for a user account that is validated by using the local user database. Login user account shows the sample configuration.

Figure 1. Login user account

Creating a login user account shows how to create the John Smith user account. John has a user ID of john and uses a plain text password of mypassword. Note that after configuration has been committed, only the encrypted version of the password is displayed when configuration is shown.

Note: User information can be changed through the UNIX shell (providing you have sufficient permission). However, any changes to vRouter user accounts or authentication through the UNIX shell are overwritten the next time you commit vRouter CLI configuration.
CAUTION: If your login user is not a member of the login user group "secrets" and you save a configuration either through the REST API or use the save command, the encrypted passwords in the configuration file are replaced with the ******** placeholder. If you load this configuration, the replaced password fields trigger validation errors because the placeholder does not match the format for an encrypted password. Do not commit this configuration. If you ignore the error message and perform a commit with this invalid configuration, the passwords are deleted.

To create a login user account, perform the following steps in configuration mode.

Table 1. Creating a login user account
Step Command

Create the user configuration node, define the user ID, and give the full name of the user.

vyatta@R1#set system login
user john full-name “John Smith”
                  

Specify the password for the user in plain text.

vyatta@R1#set system login user john authentication
 plaintext-password mypassword

Commit the changes. After a password has been committed, it can be displayed only in encrypted form, as the value of the encrypted-password attribute.

vyatta@R1# commit

Show the contents of the system login configuration node.

vyatta@R1# show system login

user Vyatta {
    authentication {
        encrypted-password $1$$ZbzUPUD24iyfRwCKIT16q0
    }
}
user john {
    authentication 
        encrypted-password $1$$Ht7gBYnxI1xCdO/JOnodh.
        plaintext-password ""
    }
    full-name "John Smith"
}