Augmenting management privilege levels – Brocade Virtual ADX Administration Guide (Supporting ADX v03.1.00) User Manual
Page 76
64
Brocade Virtual ADX Administration Guide
53-1003249-01
Setting passwords
2
NOTE
You must set the Super User level password before you can set other types of passwords. The
Super User level password can be an alphanumeric string, but cannot begin with a number.
4. Enter the following commands to set the Port Configuration level and Read Only level
passwords.
Virtual ADX(config)#enable port-config-password text
Virtual ADX(config)#enable read-only-password text
NOTE
If you forget your Super User level password, refer to
“Recovering from a lost password”
Augmenting management privilege levels
Each management privilege level provides access to specific areas of the CLI by default:
•
Super User level provides access to all commands and displays.
•
Port Configuration level gives access to:
•
The User EXEC and Privileged EXEC levels
•
The port-specific parts of the CONFIG level
•
All interface configuration levels
•
Read Only level gives access to:
•
The User EXEC and Privileged EXEC levels
You can grant additional access to a privilege level on an individual command basis. To grant the
additional access, you specify the privilege level you are enhancing, the CLI level that contains the
command, and the individual command.
NOTE
This feature applies only to management privilege levels on the CLI. You cannot augment
management access levels for the Web Management Interface.
To enhance the Port Configuration privilege level so users also can enter IP commands at the
global CONFIG level, enter a command such as the following.
Virtual ADX(config)#privilege configure level 4 ip
In this command, configure specifies that the enhanced access is for a command at the global
CONFIG level of the CLI. The level 4 parameter indicates that the enhanced access is for
management privilege level 4 (Port Configuration). All users with Port Configuration privileges will
have the enhanced access. The ip parameter indicates that the enhanced access is for the IP
commands. Users who log in with valid Port Configuration level user names and passwords can
enter commands that begin with “ip” at the global CONFIG level.
Syntax: [no] privilege cli-level level privilege-level command-string
The cli-level variable specifies the CLI level and can be one of the following values.
•
exec – EXEC level; for example, Virtual ADX or Virtual ADX#
•
configure – CONFIG level; for example, Virtual ADX(config)#
•
interface – Interface level; for example, Virtual ADX(config-if-6)#
•
virtual-interface – Virtual-interface level; for example, Virtual ADX(config-vif-6)#