Setup Cisco Meeting Server User Credentials

In order to access Cisco Meeting Server data, the Administrator Username and Password is normally required as it provides the necessary security permissions. However, if this is not desirable, alternative user names can be created through the Mainboard Management Processor (MMP) Command Interface for Web API and CLI credentials.

On Acano X-Series Servers, the MMP can be accessed via the serial Console port or SSH on the Ethernet interface labeled Admin. In virtualized deployments (the Cisco Meeting Server 1000, and specification based VM servers) the MMP is accessed on virtual interface A.

Prerequisites

The MMP admin account credentials must be used to complete these steps.

Procedure

To do this use the following procedure.

Logon to the MMP using an administrator account

Enable access to the Web Admin interface

This may already be enabled, but if not, then please follow the instructions provided by Cisco here: https://www.cisco.com/c/en/us/support/docs/conferencing/meeting-server-1000/216115-how-to-configure-webadmin-service-on-cms.html

Create the Web API user

user add <http-username> api

Creates a new MMP user with access to login to the Web Admin interface of the CMS.

Prompts for a temporary password for the user, which must be entered twice to ensure that the intended password is configured. On the first login, the user will be asked to configure a new password.

User passwords expire after 6 months

Create the CLI user

user add <cli-username> crypto

Creates a new MMP user with access to the MMP Command Line Interface of the CMS.

Prompts for a temporary password for the user, which must be entered twice to ensure that the intended password is configured. On the first login, the user will be asked to configure a new password.

User passwords expire after 6 months

Optional, remove the 6-month password expiry

For the Monitoring Server, it is not desirable for the password to expire, this will cause the Monitoring Server login failures and will disable the user account on the CMS, leading to the failure to retrieve call data from the system. To overcome this, either use the admin account for both API and CLI access, or the password expiry can be extended well beyond the 6-month limit.

user rule password_age <days>

Set the password age to the maximum value of '99999' which will prevent the passwords from expiring (for a very long time).

Set the permanent passwords

Using the accounts setup above,

  • Log into the CMS Web Admin using the API user account and set the permanent password
  • Log into the MMP console using the Crypto (CLI) user and set the permanent password.

Failure to set the permanent passwords will result in the accounts being disabled when attempts are made to login via the Monitoring Server.

Provide feedback on this article