lolcreds

Public credential defaults and exposure patterns for authorized security testing.

APC Network Management Cards

Schneider Electric / APCnetwork4 credentials1 default credential

Credentials4 documented
01

Default apc Account

apc-network-management-card / default-apc

APC Network Management Cards for UPS/PDU devices have a documented default administrator account for initial web/Telnet/SSH access that must be changed during installation.

static defaultuser definedsecretusername/password

Default credentials

apc:apc

Location

public interface
NMC web UI, SSH, Telnet, FTP/SCP, SNMP, and serial console
config file

NMC configuration exports, config.ini, and fleet management templates

artifact

UPS/PDU configuration backups, support files, and deployment worksheets

Notes

apc/apc is a well-known initial credential for many APC NMC generations; newer firmware/policies may require password changes or unique credentials.

02

Local NMC User Password

apc-network-management-card / local-user-password

APC NMC cards maintain local administrator/device/read-only users for management interfaces and automation.

user definedsecretusername/password

Looks like

pattern
pattern

APC config.ini style user/password or SNMP phrase setting

^\s*(userName|password|Authentication Phrase|Privacy Phrase)\s*=\s*.+$

Location

config file
config.ini

exported Network Management Card configuration including user and authentication settings

public interface
web UI, CLI over SSH/Telnet/serial, FTP/SCP, and management APIs
secret store

datacenter password vaults and UPS/PDU management platforms

logs

event logs, syslog, and management access traces

03

SNMP Community / SNMPv3 Auth and Privacy Secrets

apc-network-management-card / snmpv1-v3-secrets

APC NMC devices expose monitoring and control over SNMP. Community strings and SNMPv3 auth/privacy phrases are management credentials.

user definedsecretsecret value

Location

config file
config.ini

SNMPv1/v2 community names and SNMPv3 authentication/privacy phrases

public interface
SNMP management service
source code

monitoring configs, NMS exports, and automation scripts

secret store

NMS credential stores and password vaults

logs

SNMP traps, syslog, and NMS debug logs

04

RADIUS/LDAP/TACACS+ and TLS Secrets

apc-network-management-card / radius-ldap-tacacs-and-tls-secrets

APC NMC configurations may contain RADIUS shared secrets, LDAP bind credentials, TACACS+ secrets, email/SMTP credentials, and HTTPS/SSH certificate or host key material.

user definedgenerated on installsecretsecret value

Looks like

pattern
pattern

private key material for NMC HTTPS certificate or SSH host/client key context

-----BEGIN (RSA |EC |ENCRYPTED |)PRIVATE KEY-----

Location

config file
config.ini, ssl/ssh certificate exports

remote authentication, SMTP, TLS, and SSH settings

secret store

certificate stores, password vaults, and datacenter management secrets

artifact

configuration backups and firmware migration bundles

logs

remote auth, SMTP, syslog, and TLS/SSH debug output

Scope

Authorized use

LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.