1. Installation and Administration Guide
  2. OKM Console
  3. OKM Console Functions
  4. Enable the Technical Support Account (using OKM Console)

Enable the Technical Support Account (using OKM Console)

This OKM console function enables the technical support account.

By default, both the Technical Support account and SSH access are disabled. Enabling the support account and SSH access is a security risk. Disable the support account unless it is required for troubleshooting purposes. If you enable the technical support account and then log into the KMA using this account, the KMA will automatically disconnect the SSH session after 10 minutes of inactivity.
Available to: Security Officer
  1. Log into OKM console. At the Please enter your choice: prompt on the main menu, select Technical Support. Press Enter.
  2. When prompted to enable the support account, type y and press Enter.
  3. To confirm the change, type y and press Enter.
  4. Carefully read the information about the SSH host keys. When prompted to regenerate the SSH host keys, type y and press Enter.
  5. Record and store the SSH host keys somewhere secure.
  6. Enter a passphrase. See Technical Support Account Password Requirements.
  7. Enter the maximum number of days the passphrase is valid.

Technical Support Account Password Requirements

Beginning with OKM 3.3.2, password policies for the technical support account have changed for added security and compliance with the Solaris 11 Security Technical Implementation Guide (STIG), Release: 13.

If you provide an invalid support account password, you have three more attempts to provide a valid password and each attempt has a 30-second timeout.