User account passwords viewable by Administrators

Question

I am running NCM 5.5.

Device authentication on my network is done with Radius.

On NCM, each user account is setup to be an Administrator.  Each user account has the users Radius username/password configured so that they can add devices/run scripts.

My problem is that any administrator can just uncheck the "Hide Passwords" button in the Security settings thus making all individual users passwords visible to the other Admins.

I could always assign one Admin and make the rest Engineers, but there is still the problem that one person would still be able to view passwords.

Other than deleting your username/password from your NCM account after each time you use it, is there any way that I can circumvent this?

Hugh

HughBradley · Answer

The problem is that we are Sarbanes-Oxley compliant.  There must always be a track record of who changed what.  Plus if we assigned one administrator, that administrator would have full access to all the network analysts userid's and passwords.

Is there a way to remove the button that when checked (or unchecked), displays the clear text?

chris.lapoint · Answer

You have to have at least one Administrator in your organization.   So, you could give everyone an NCM login account with Engineers role and only use the Administrator account when you need to make settings changes.