Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Check illegal fallback usernames

Hello,

I want to make sure that only one fallback user is configured in our devices. With RME Compliancy managemen I would like to check if any other fallback usernames are configured then our standard fallback user. I assume that it should be something like:

- username [#!fallbackusername .*]or

- [#!username fallbackusername .*#]

But these doesn't do the trick.

The problem is that it's a negative rule (should not exsist), and the default username we use must be negated (other than fallbackusername). Besides that, the rule contains wildcards because passwords are encrypted, and thus random in devices.

Does anyone have any ideas?

Thanks very much.

Laurence

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: Check illegal fallback usernames

Chances are the bad username has a different number of characters that the good username.  Try this:

+ [#username fallbackusername .*#]

- [#username (?!fallbackusername)\b.*#]

4 REPLIES
Cisco Employee

Re: Check illegal fallback usernames

Try:

+ [#username fallbackusername .*#]

- [#username (?!fallbackusername) .*#]

Where fallbackusername is the desired fallback username.

New Member

Re: Check illegal fallback usernames

Hi Joe Marcus,

Thanks for your response.

I have a device configured with two username, one like "fallbackusername" and one other user. The compliancy check with the statement you suggested show that the device is compliant, where i expected the device not being compliant because another username exsist.

Any other suggestions?

Thanks.

Laurence

Cisco Employee

Re: Check illegal fallback usernames

Chances are the bad username has a different number of characters that the good username.  Try this:

+ [#username fallbackusername .*#]

- [#username (?!fallbackusername)\b.*#]

New Member

Re: Check illegal fallback usernames

Hi Joe Marcus,

This does the trick.

Thanks again, you really helped us out.

Laurence.

214
Views
0
Helpful
4
Replies