Symptoms

Impact:Not able to login after firmware upgrade, with default accounts. (root, user, admin)This may pose a security vulnerability if not addressed immediately.Problem has only been seen on a small number of occasions during upgrades.Environment:EMC Hardware: Connectrix DS-300BEMC Hardware: Connectrix DS-5100BEMC Hardware: Connectrix DS-5300BEMC Hardware: Connectrix DS-6505BEMC Hardware: Connectrix DS-6510BEMC Hardware: Connectrix DS-6520BEMC Hardware: Connectrix ED-DCX-BEMC Hardware: Connectrix ED-DCX-4S-BEMC Hardware: Connectrix ED-DCX8510-4BEMC Hardware: Connectrix ED-DCX8510-8BBrocade Software: Connectrix B-Series Fabric OS 7.2.xBrocade Software: Connectrix B-Series Fabric OS 8.0.xProblem:If default accounts (factory, root, user, admin) passwords had been changed in in the past with Fabric OS versions earlier than v7.3.x and then the switch was upgraded all the way to FOS v7.4.2 and later or FOS v8.0.1 and later, the passwords for these accounts may be reset to default.(Note that the this can happen when the password have been changed in the past at the login prompt, if the password have been changed via the CLI there is a low probability.)- This problem does exist if password were changed while the switch is running FOS v7.2.0 or earlier.- This problem does NOT exist if passwords were changed while the switch is running FOS v7.3.0 or later and then upgraded.- Locally created accounts, LDAP, RADIUS, or TACACS are NOT impacted.- Custom created accounts are NOT affected.

Cause

Cause is unknownBrocade DEFECT = No defect.Brocade TSB 2017-265-A

Resolution

Fix:To recover from default account password reset after switch upgrade, change all default user account passwords back to previous customized passwords.Workaround:Preferred workaround: When successful upgraded to FOS 7.3 x or to FOS 7.4.0x, create a user account, upgrade and delete the newly created user account after successful login. This means that the user does not have to touch / change any of the customized passwords of the default accounts.(Once a user account is created, all current user accounts can be synched into shadow database before upgrading to FOS 7.4.2 later or 8.0.1 later.)See example in the notes on how to create and delete user account.Non-preferred workaround: When successful upgraded to FOS 7.3 x or to FOS 7.4.0x, change 1 of the default user account password before the next upgrade to FOS 7.4.x Brocade DEFECT = No defect.Brocade TSB 2017-265-A

Support Cases