H3C Technologies H3C S12500 Series Switches User Manual
Page 27
15
[Sysname] user-interface vty 1
[Sysname-ui-vty1] authentication-mode scheme
[Sysname-ui-vty1] quit
[Sysname] local-user test
[Sysname-luser-test] password cipher 123
[Sysname-luser-test] service-type telnet
When users Telnet to the switch through VTY 1, they must enter username test and password 12345678.
After passing the authentication, the users can only use level-0 commands.
# Assign commands of levels 0 through 3 to the users.
[Sysname-luser-test] authorization-attribute level 3
Configuring the user privilege level directly on a user interface
To configure the user privilege level directly on a user interface that uses the scheme authentication mode:
Step Command
Remarks
1.
Configure the authentication
type for SSH users as
publickey.
For more information, see Security
Configuration Guide.
Required if the SSH login mode is
adopted, and only the username is
needed during authentication.
You must also set the
authentication mode of the user
interfaces to scheme.
2.
Enter system view.
system-view
N/A
3.
Enter user interface view.
user-interface { first-num1
[ last-num1 ] | vty first-num2
[ last-num2 ] }
N/A
4.
Configure the authentication
mode for any user that uses
the current user interface to
log in to the switch.
authentication-mode scheme
By default, the authentication
mode for VTY and AUX users is
password, and no authentication is
needed for console users.
5.
Configure the privilege level
for users that log in through
the current user interface.
user privilege level level
Optional.
By default, the user privilege level
for users logged in through the
console user interface is 3, and
that for users logged in through the
other user interfaces is 0.
To configure the user privilege level directly on a user interface that uses the none or password
authentication mode:
Step Command
Remarks
1.
Enter system view.
system-view
N/A
2.
Enter user interface view.
user-interface { first-num1
[ last-num1 ] | { aux | console |
vty } first-num2 [ last-num2 ] }
N/A