Skip to content

Switches, Firewalls, and Network Appliances Account Management

This page outlines how various network devices, such as switches, routers, firewalls, and storage systems, are managed within our 12Port PAM platform. These devices are integrated with PAM to enable secure and centralized management of administrative accounts used to configure and operate each system.

Note

Credential management for network appliances is addressed on this page. For secure, audited SSH-based remote access to network appliances, refer to Network Appliance Sessions.

Through this integration, PAM provides the following core functions:

  • Password Reconciliation: Ensures (and can set) the stored credentials in PAM match the actual passwords on the devices.
  • Password Reset: Automatically rotates credentials based on policy or as needed for compliance and security.
  • Password Verification: Validates that the credentials used for each device remain accurate and functional.

This documentation lists the available scripts for each supported network device, with this naming format and description.

  • <Device Vendor or Name> Reset Password - Used to reset the password of the current account in the asset.

  • <Device Vendor or Name> Set Password - Used to reconcile or set a new password on the account in the asset.

  • <Device Vendor or Name> Set Password Shadow - Used to reconcile or set a new password on the account in the asset, requiring a Shadow member asset.

  • <Device Vendor or Name> Verify Password - Used to verify the accuracy of the current password in the asset.

Tip

Open the Management > Scripts page to view all available scripts and use each script's Actions > Edit option to review the code.

To remotely access or manage accounts on a network appliance using the PAM platform, use the default Network Appliance asset type. This asset type is hidden by default and must be unhidden before use (Management > Asset Types).

Tip

By default, all available network-appliance scripts are included in the Network Appliance asset type task list. If you manage only a specific vendor (for example, Cisco devices), consider removing non-relevant scripts and retaining only the vendor-specific ones. This helps simplify configuration and ongoing management of the asset type.

Brocade

Available scripts for Brocade devices:

Brocade Set Password

Brocade Verify Password

Cisco Nexus

Available scripts for Cisco Nexus devices:

Cisco Nexus Set Password

Cisco Nexus Verify Password

Cisco

Available scripts for Cisco devices:

Cisco Set Password

Cisco Verify Password

F5 BIG-IP

Available scripts for F5 BIG-IP devices:

F5 BIG-IP Set Password

F5 BIG-IP Verify Password

Fortigate

Available scripts for Fortigate devices:

Fortigate Set Password

Fortigate Verify Password

Juniper

Available scripts for Juniper devices:

Juniper Set Password

Juniper Verify Password

NetApp

Available scripts for NetApp devices:

NetApp Reset Password

NetApp Set Password Shadow

NetApp Verify Password

Netscaler

Available scripts for Netscaler devices:

Netscaler Set Password

Netscaler Verify Password

Palo Alto

Available scripts for Palo Alto devices:

Palo Alto Set Password

Palo Alto Verify Password