From time to time, you might have reason to change the various passwords on the appliance and HSM. This might be because a password has possibly been compromised, or it might be because you have security procedures that mandate password-change intervals.
To change the password of a user, use the following command:
lunash:> user password [userid]
Changing password for user "admin"
New UNIX password
Retype new UNIX password
All authentication tokens updated successfully
Command result : (0) success
lunash:>
If you issue the command without specifying a userid, the password for the current logged-in user is changed.
You are assumed to already know the current password (because you must be logged in as that user if you are issuing the command), so you are not prompted for the current password before being asked for the new one. Therefore, as an elementary security measure, never leave a logged-in session unattended.
Any user with the "admin" role can change that user's own password or another user's password, without knowing the other user's current password.
The above affects the password(s) for the appliance only, and does not affect the HSM or HSM partitions.
For those, see "About Changing HSM and Partition Passwords" and see "Resetting Passwords" .
Also, see "Failed Logins".