Configuring user privilege and command levels – H3C Technologies H3C S12500 Series Switches User Manual
Page 25
13
#
return
# Use | exclude Direct in the display ip routing-table command to filter out direct routes and display only
the non-direct routes.
<Sysname> display ip routing-table | exclude Direct
Routing Tables: Public
Destination/Mask Proto Pre Cost NextHop Interface
1.1.1.0/24 Static 60 0 192.168.0.0 Vlan1
# Use | include Vlan in the display ip routing-table command to filter in route entries that contain Vlan.
<Sysname> display ip routing-table | include Vlan
Routing Tables: Public
Destination/Mask Proto Pre Cost NextHop Interface
192.168.1.0/24 Direct 0 0 192.168.1.42 Vlan999
Configuring user privilege and command levels
To avoid unauthorized access, the switch defines the user privilege levels and command levels in
. User privilege levels correspond to command levels. A user logged in with a specific privilege level
can use only the commands at that level or lower levels.
Table 7 Command levels and user privilege levels
Level Privilege
Default set of commands
0 Visit
Includes commands for network diagnosis and commands for accessing an external
switch. Configuration of commands at this level cannot survive a switch restart. Upon
switch restart, the commands at this level will be restored to the default settings.
Commands at this level include ping, tracert, telnet and ssh2.
1 Monitor
Includes commands for system maintenance and service fault diagnosis. Commands
at this level are not saved after being configured. After the switch is restarted, the
commands at this level will be restored to the default settings.
Commands at this level include debugging, terminal, refresh, and send.
2 System
Includes service configuration commands, including routing configuration commands
and commands for configuring services at different network levels.
By default, commands at this level include all configuration commands except for
those at manage level.
3 Manage
Includes commands that influence the basic operation of the system and commands for
configuring system support modules.
By default, commands at this level involve the configuration commands of file system,
FTP, TFTP, Xmodem download, user management, level setting, and parameter
settings within a system, which are not defined by any protocols or RFCs.