H3C Technologies H3C SecBlade NetStream Cards User Manual

Page 30

Advertising
background image

15

To do…

Use the command…

Remarks

Enter user interface view

user-interface { first-num1
[ last-num1 ] | { aux | console |
vty } first-num2 [ last-num2 ] }

Specify the scheme authentication
mode

authentication-mode scheme

Required
By default, the authentication
mode for VTY and AUX users is

password, and no authentication is

needed for console login users.

Return to system view

quit

Configure the
user privilege
level by using

AAA

authentication
parameters

Using local
authentication

Use the local-user command to

create a local user and enter
local user view.

Use the level keyword in the

authorization-attribute

command to configure the user
privilege level.

User either approach

For local authentication, if you

do not configure the user
privilege level, the user

privilege level is 0.

For remote authentication, if

you do not configure the user

privilege level, the user

privilege level depends on the
default configuration of the

authentication server.

Using remote
authentication

(RADIUS,

HWTACACS,
and LDAP

authentications)

Configure the user privilege level
on the authentication server

Example of configuring a user privilege level by using AAA authentication parameters

# You are required to authenticate the users that telnet to the device through VTY 1, verify their username

and password, and specify the user privilege level as 3.

<Sysname> system-view
[Sysname] user-interface vty 1
[Sysname-ui-vty1] authentication-mode scheme
[Sysname-ui-vty1] quit
[Sysname] local-user test
[Sysname-luser-test] password cipher 12345678
[Sysname-luser-test] service-type telnet

When users telnet to the device through VTY 1, they need to input username test and password 12345678.
After passing the authentication, the users can only use the commands of level 0. If the users want to use
commands of levels 0, 1, 2 and 3, the following configuration is required:

[Sysname-luser-test] authorization-attribute level 3

Configure the user privilege level under a user interface

If the authentication mode of a user interface is none or password, the user privilege level of users

logging into the user interface is the user interface level.
Follow these steps to configure the user privilege level under a user interface (none or password

authentication mode):

Advertising
This manual is related to the following products:

H3C S10500 Series Switches, H3C S7500E Series Switches, H3C S6800 Series Switches, H3C S6300 Series Switches, H3C S5800 Series Switches, H3C S5820X Series Switches, H3C S5820V2 Series Switches, H3C S5830 Series Switches, H3C S5830V2 Series Switches, H3C S3600V2 Series Switches, H3C S3100V2 Series Switches

Popular Brands
Popular manuals