HP VSR1000 Security Configuration Manual page 32
Virtual services router
Hide thumbs
Also See for VSR1000:
- Configuration manual (463 pages) ,
- High availability configuration manual (91 pages) ,
- Layer 2 - wan access command reference (50 pages)
Table of Contents
Advertisement
Configuring user group attributes
User groups simplify local user configuration and management. A user group contains a group of local
users and has a set of local user attributes. You can configure local user attributes for a user group to
implement centralized user attributes management for the local users in the group. Local user attributes
that are manageable include authorization attributes.
By default, every new local user belongs to the default user group system and has all attributes of the
group. To assign a local user to a different user group, use the group command in local user view.
To configure user group attributes:
Step
1.
Enter system view.
2.
Create a user group and
enter user group view.
3.
Configure authorization
attributes for the user group.
4.
(Optional.) Configure
password control attributes
for the user group.
Displaying and maintaining local users and local user groups
Execute display commands in any view.
Task
Display the local user
configuration and online user
statistics.
Command
system-view
user-group group-name
authorization-attribute { acl
acl-number | callback-number
callback-number | idle-cut minute |
vlan vlan-id | work-directory
directory-name } *
•
Set the password aging time:
password-control aging
aging-time
•
Set the minimum password length:
password-control length length
•
Configure the password
composition policy:
password-control composition
type-number type-number
[ type-length type-length ]
•
Configure the password
complexity checking policy:
password-control complexity
{ same-character | user-name }
check
•
Configure the maximum login
attempts and the action to take for
login failures:
password-control login-attempt
login-times [ exceed { lock |
lock-time time | unlock } ]
Command
display local-user [ class { manage | network } | idle-cut { disable | enable }
| service-type { ftp | portal | ppp | ssh | telnet | terminal } | state { active
| block } | user-name user-name | vlan vlan-id ]
22
Remarks
N/A
By default, there is a
system-defined user group named
system, which is the default user
group.
By default, no authorization
attribute is configured for a user
group.
By default, the user group uses
the global password control
settings. For more information,
see
"Configuring password
control."
- Quick Links:
- Configuring the Device as an Ssh...
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
