By default, root access to the storage system is enabled. You have the option to disable the root account's access to the storage system, preventing the root account from logging in the system or executing any commands.
To prevent the root account from logging in to the system or executing any commands, a user other than root with the security-complete-user-control security capability can disable root access by setting the option security.passwd.rootaccess.enable to off.
An EMS message is sent every time the option changes.
To reset the security.passwd.rootaccess.enable option to on (the default) to enable root access, a user must change the root account's password.
The option to enable or disable root access is supported if you access the storage system through Telnet, RSH, SSH, http-admin, NDMP, or the serial console.