All "root" password for SRX firewalls and "dtadmin" for SSG firewalls are sealed in Password Safe.

They are suppose to be used only for emergency access or to perform specific debug actions.

Every normal DT user is be able to brake the seal but will NOT be able to seal it again.

A log of the who did brake the seal will be visible and the root pw will not be accessable any more as long as the administrator M. Hausmann will seal it again.

The seal may be broken, for examples, from the Hosting team to reboot a defective firewall if none of the security administrators is reachable.

The seal can be broken and then sealed again only using one of the users dtmfsadminx or by someone of the Dinotronic_GL group.