Controlling user access, Defining login classes – Juniper Networks J-Series User Manual
Page 38
Controlling User Access
This section contains the following topics:
■
Defining Login Classes on page 16
■
Creating User Accounts on page 17
Defining Login Classes
You can define any number of login classes. You then apply one login class to an
individual user account, as described in “Creating User Accounts” on page 17 and
“Setting Up Template Accounts” on page 18.
The procedure provided in this section creates a sample login class named
operator-and-boot
with the following privileges:
■
The
operator-and-boot
login class can reboot the Services Router using the
request
system reboot
command.
■
The
operator-and-boot
login class can also use commands defined in the
clear
,
network
,
reset
,
trace
, and
view
permission bits. For more information, see
To define login classes:
1.
Navigate to the top of the configuration hierarchy in either the J-Web or CLI
configuration editor.
2.
Perform the configuration tasks described in Table 14 on page 16.
3.
If you are finished configuring the network, commit the configuration.
4.
Go on to one of the following procedures:
■
To create user accounts, see “Creating User Accounts” on page 17.
■
To create shared user accounts, see “Setting Up Template
Accounts” on page 18.
Table 14: Defining Login Classes
CLI Configuration Editor
J-Web Configuration Editor
Task
From the
[edit]
hierarchy level,
enter
edit system login
1.
In the J-Web interface, select Configuration>View
and Edit>Edit Configuration.
2.
Next to System, click Configure or Edit.
3.
Next to Login, click Configure or Edit.
Navigate to the System
Login level in the
configuration hierarchy.
16
■
Managing User Authentication with a Configuration Editor
J-series™ Services Router Administration Guide