Command Hierarchy; Command Level And User Privilege Level; Modifying The Command Level - H3C S5600 SERIES Operation Manual
Hide thumbs
Also See for S5600 SERIES:
- Operation manual (1278 pages) ,
- Configuration (313 pages) ,
- Operation manual (1218 pages)
Table of Contents
Advertisement
Command Hierarchy
Command Level and User Privilege Level
Command level
The S5600 series Ethernet switches use hierarchical command protection for command lines, so as to
inhibit users at lower levels from using higher-level commands to configure the switches.
Based on user privilege, commands are classified into four levels, which default to:
Visit level (level 0): Commands at this level are mainly used to diagnose network, and they cannot
be saved in configuration file. For example, ping, tracert and telnet are level 0 commands.
Monitor level (level 1): Commands at this level are mainly used to maintain the system and
diagnose service faults, and they cannot be saved in configuration file. Such commands include
debugging and terminal.
System level (level 2): Commands at this level are mainly used to configure services. Commands
concerning routing and network layers are at this level. These commands can be used to provide
network services directly.
Manage level (level 3): Commands at this level are associated with the basic operation modules
and support modules of the system. These commands provide support for services. Commands
concerning file system, FTP/TFTP/XModem downloading, user management, and level setting are
at this level.
User privilege level
Users logged into the switch fall into four user privilege levels, which correspond to the four command
levels respectively. Users at a specific level can only use the commands at the same level or lower
levels.
By default, the Console user (a user who logs into the switch through the Console port) is a level-3 user,
and Telnet users are level-0 users.
You can use the user privilege level command to set the default user privilege level for users logging in
through a certain user interface. For details, refer to Login Operation.
If a user logs in using AAA authentication, the user privilege level depends on the configuration of the
AAA scheme. For details, refer to AAA Operation.
Modifying the Command Level
Modifying the Command Level
Commands fall into four levels: visit (level 0), monitor (level 1), system (level 2), and manage (level 3).
By using the following command, the administrator can change the level of a command in a specific
view as required.
Follow these steps to set the level of a command in a specific view:
1-2
Advertisement
Chapters
Table of Contents
Troubleshooting
