Switching the user privilege level – H3C Technologies H3C SecPath F1000-E User Manual

Page 120

Advertising
background image

112

telnet Establish one TELNET connection
tftp Open TFTP connection
tracert Trace route function

# Configure the device to perform no authentication for Telnet users, and to authorize authenticated
Telnet users to use level-0 and level-1 commands. (Use no authentication mode only in a secure network

environment.)

<Sysname> system-view
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode none
[Sysname-ui-vty0-4] user privilege level 1

# Display the commands a Telnet user can use after login. Because the user privilege level is 1, a Telnet
user can use more commands now.

<Sysname> ?
User view commands:
debugging Enable system debugging functions
dialer Dialer disconnect
display Display current system information
ping Ping function
quit Exit from current command view
refresh Do soft reset
reset Reset operation
rsh Establish one RSH connection
screen-length Specify the lines displayed on one screen
send Send information to other user terminal interface
ssh2 Establish a secure shell client connection
super Set the current user priority level
telnet Establish one TELNET connection
terminal Set the terminal line characteristics
tftp Open TFTP connection
tracert Trace route function
undo Cancel current setting

# Configure the device to perform password authentication for Telnet users, and to authorize
authenticated Telnet users to use the commands of privilege levels 0, 1, and 2.

<Sysname> system-view
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode password
[Sysname-ui-vty0-4] set authentication password simple 123
[Sysname-ui-vty0-4] user privilege level 2

After the configuration is complete, when users Telnet to the device, they must enter the password
12345678. After passing authentication, they can use commands of levels 0, 1, and 2.

Switching the user privilege level

Users can switch to a different user privilege level without logging out and terminating the current

connection. After the privilege level switching, users can continue to manage the device without

relogging in, but the commands they can execute have changed. For example, with the user privilege
level 3, a user can configure system parameters. After switching to user privilege level 0, the user can

Advertising
This manual is related to the following products:

H3C SecPath F5000-A5 Firewall, H3C SecPath F1000-A-EI, H3C SecPath F1000-E-SI, H3C SecPath F1000-S-AI, H3C SecPath F5000-S Firewall, H3C SecPath F5000-C Firewall, H3C SecPath F100-C-SI, H3C SecPath F1000-C-SI, H3C SecPath F100-A-SI, H3C SecBlade FW Cards, H3C SecBlade FW Enhanced Cards, H3C SecPath U200-A U200-M U200-S, H3C SecPath U200-CA U200-CM U200-CS

Popular Brands
Popular manuals