I'm looking at the documents about user management of the 'cumulus' account and all it says is you can change the password with 'passwd' or 'sudo passwd' as you would for any normal unix account. However, when dealing with hundreds of switches, such mechanisms are not entirely secure. I can't manually login to hundreds of devices to control administrative access. The 'cumulus' and 'root' accounts become "passwords of last resort" and have to be protected / changed even if I employ some central authentication (e.g. TACACS+, etc)
So the question: Is there a preferred way to programmically change account passwords on hundreds of devices?