H3C Technologies H3C S3100 Series Switches User Manual

Page 18

Advertising
background image

1-5

When both the super password authentication and the HWTACACS authentication are specified, the

device adopts the preferred authentication mode first. If the preferred authentication mode cannot be

implemented (for example, the super password is not configured or the HWTACACS authentication

server is unreachable), the backup authentication mode is adopted.

Adopting super password authentication for user level switching

With the super password set, you can pass the super password authentication successfully only when

you provide the super password as prompted. If no super password is set, the system prompts

“%Password is not set” when you attempt to switch to a higher user level. In this case, you cannot pass

the super password authentication.

For example, after the administrator configures the super password level 3 simple 123 command,

when users of level 0 through level 2 want to switch to user level 3, they need to input super password

123.

The following table lists the operations to configure super password authentication for user level

switching, which can only be performed by level-3 users (administrators).

Follow these steps to set a password for use level switching:

Operation

Command

Remarks

Enter system view

system-view

Set the super password for
user level switching

super password [ level level ]
{ cipher | simple } password

Required

The configuration will take
effect on all user interfaces.

By default, the super password
is not set.

The super password is for level switching only and is different from the login password..

Adopting HWTACACS authentication for user level switching

To implement HWTACACS authentication for user level switching, a level-3 user must perform the

commands listed in the following table to configure the HWTACACS authentication scheme used for

low-to-high user level switching. With HWTACACS authentication enabled, you can pass the

HWTACACS authentication successfully only after you provide the right user name and the

corresponding password as prompted. Note that if you have passed the HWTACACS authentication

when logging in to the switch, only the password is required.

Follow these steps to set the HWTACACS authentication scheme for user level switching:

Advertising
Popular Brands
Popular manuals