Step
3.
Set a local
authentication
password for a user
role.
Obtaining temporary user role authorization
AUX or VTY users must pass authentication before they can use a user role that is not included in the user
account they are logged in with.
Perform the following task in user view:
Task
Obtain the temporary
authorization to use a
user role.
Displaying RBAC settings
Execute display commands in any view.
Task
Display user role information.
Display user role feature
information.
Display user role feature group
information.
Command
•
In non-FIPS mode:
super password [ role
rolename ] [ { hash |
simple } password ]
•
In FIPS mode:
super password [ role
rolename ]
Command
super [ rolename ]
Command
display role [ name role-name ]
display role feature [ name feature-name | verbose ]
display role feature-group [ name feature-group-name ] [ verbose ]
63
Remarks
Use this step for local password authentication.
By default, no password is configured.
If you log in to the default MDC and do not
specify a user role for the command, the
command sets a password for the user role
network-admin. If you log in to a non-default
MDC and do not specify a user role for the
command, the command sets a password for the
user role mdc-admin.
Remarks
The operation fails after three consecutive unsuccessful
password attempts.
The user role must have the permission to execute the
super command to obtain temporary user role
authorization.