H3C Technologies H3C SecPath F1000-E User Manual

166

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Set the password display
mode for all local users.

local-user
password-display-mode { auto |

cipher-force }

Optional.
The default password display mode
is auto for all local users, indicating

to display the password of a local

user in the way defined by the
password command.

3.

Add a local user and enter

local user view.

local-user user-name N/A

4.

Configure a password for
the local user.

password { cipher | simple }
password

Optional.
A local user with no password
configured directly passes

authentication after providing the
valid local username and attributes.

To enhance security, configure a

password for each local user.
In FIPS mode, the firewall does not
support this command. To set a

password, use the password control

feature.

5.

Specify the service types for

the local user.

service-type { dvpn | ftp | { ssh |
telnet | terminal } * | portal | ppp
| web }

By default, no service is authorized to
a local user.
In FIPS mode, the firewall does not
support the ftp and telnet keywords.

6.

Place the local user to the
state of active or blocked.

state { active | block }

Optional.
When created, a local user is in
active state by default, and the user

can request network services.

7.

Set the maximum number of
concurrent users of the local

user account.

access-limit max-user-number

Optional.
By default, there is no limit to the
maximum number of concurrent users

of a local user account.
This limit is not effective for FTP users.