Configuring a local user account – Brocade BigIron RX Series Configuration Guide User Manual

Page 146

Advertising
background image

68

BigIron RX Series Configuration Guide

53-1002484-04

Setting up local user accounts

3

Local user accounts provide greater flexibility for controlling management access to the device
than do management privilege level passwords and SNMP community strings of SNMP versions 1
and 2. You can continue to use the privilege level passwords and the SNMP community strings as
additional means of access authentication. Alternatively, you can choose not to use local user
accounts and instead continue to use only the privilege level passwords and SNMP community
strings. Local user accounts are backward-compatible with configuration files that contain privilege
level passwords. Refer to

“Setting passwords for management privilege levels”

on page 64.

If you configure local user accounts, you also need to configure an authentication-method list for
Telnet access, Web management access, and SNMP access. Refer to

“Configuring

authentication-method lists”

on page 104.

For each local user account, you specify a user name which can have up to 255 characters. You
also can specify the following parameters:

A password

A management privilege level, which can be one of the following:

Super User level – Allows complete read-and-write access to the system. This is generally
for system administrators and is the only privilege level that allows you to configure
passwords. This is the default.

Port Configuration level – Allows read-and-write access for specific ports but not for global
(system-wide) parameters.

Read Only level – Allows access to the Privileged EXEC mode and CONFIG mode but only
with read access.

Configuring a local user account

To configure a local user account, enter a command such as the following at the global CONFIG
level of the CLI.

BigIron RX(config)# username wonka password willy

This command adds a local user account with the user name “wonka” and the password “willy”.
This account has the Super User privilege level; this user has full access to all configuration and
display features.

NOTE

If you configure local user accounts, you must grant Super User level access to at least one account
before you add accounts with other privilege levels. You need the Super User account to make
further administrative changes.

BigIron RX(config)# username waldo privilege 5 password whereis

This command adds a user account for user name “waldo”, password “whereis”, with the Read
Only privilege level. Waldo can look for information but cannot make configuration changes.

Syntax: [no] username <user-string> privilege <privilege-level> password | nopassword

<password-string>

Enter up to 255 characters for <user-string>.

The privilege parameter specifies the privilege level for the account. You can specify one of the
following:

0 – Super User level (full read-write access)

Advertising
Popular Brands
Popular manuals