HP Enterprise FlexFabric 12900E Series Command Reference Manual page 49
Hide thumbs
Also See for Enterprise FlexFabric 12900E Series:
- Installation manual (152 pages) ,
- Configuration manual (552 pages)
Table of Contents
Advertisement
Views
User role view
Predefined user roles
network-admin
Usage guidelines
CAUTION:
The
vpn-instance policy deny
you do not specify accessible VPN instances by using the
configure a VPN instance, make sure the VPN instance is permitted by the user role VPN instance
policy in use.
To limit the scope of VPN instances accessible to a user role, perform the following tasks:
1.
Use
vpn-instance policy deny
user role access to any VPN instances.
2.
Use
permit vpn-instance
You can perform the following tasks on an accessible VPN instance:
•
Create, remove, or configure the VPN instance.
•
Enter VPN instance view.
•
Specify the VPN instance in feature commands.
Any change to a user role VPN instance policy takes effect only on users who log in with the user role
after the change.
Examples
# Enter user role VPN instance policy view of role1, and deny the access of role1 to any VPN
instances.
<Sysname> system-view
[Sysname] role name role1
[Sysname-role-role1] vpn-instance policy deny
[Sysname-role-role1-vpnpolicy] quit
# Enter user role VPN instance policy view of role1, and deny the access of role1 to any VPN
instances except for vpn2.
<Sysname> system-view
[Sysname] role name role1
[Sysname-role-role1] vpn-instance policy deny
[Sysname-role-role1-vpnpolicy] permit vpn-instance vpn2
Related commands
display role
permit vpn-instance
role
command denies a user role access to any VPN instances if
permit vpn-instance
to enter user role VPN instance policy view and deny the
to specify accessible VPN instances.
43
command. To
Advertisement
Table of Contents
