HPE FlexNetwork 7500 Series Security Configuration Manual page 36
Hide thumbs
Also See for FlexNetwork 7500 Series:
- Security configuration manual (506 pages) ,
- Command reference manual (474 pages) ,
- Network management and monitoring command reference (430 pages)
Table of Contents
Advertisement
information about password management and global password configuration, see "Configuring
password control."
•
Validity period—Time period in which a network access user is considered valid for
authentication.
Local user configuration task list
Tasks at a glance
(Required.) Configure local user attributes based on the user type:
•
Configuring non-guest local user attributes
•
Configuring local guest attributes
(Optional.)
(Optional.)
(Optional.)
Configuring non-guest local user attributes
Non-guest local user attributes apply to all local users except guests. When you configure non-guest
local user attributes, follow these guidelines:
•
When you use the password-control enable command to globally enable the password
control feature, local user passwords are not displayed.
•
You can configure authorization attributes and password control attributes in local user view or
user group view. The setting in local user view takes precedence over the setting in user group
view.
•
Configure the location binding attribute based on the service types of users.
For 802.1X users, specify the 802.1X-enabled Layer 2 Ethernet interfaces through which
the users access the device.
For MAC authentication users, specify the MAC authentication-enabled Layer 2 Ethernet
interfaces through which the users access the device.
For portal users, specify the portal-enabled interfaces through which the users access the
device. Specify the Layer 2 Ethernet interfaces if portal is enabled on VLAN interfaces and
the portal roaming enable command is not configured.
To configure non-guest local user attributes:
Step
1.
Enter system view.
2.
Add a local user and
enter local user view.
3.
(Optional.) Configure
a password for the
local user.
4.
(Optional.) Configure
a description for the
local user.
Configuring user group attributes
Managing local guests
Configuring the auto-delete feature of local users
Command
system-view
local-user user-name [ class
{ manage | network } ]
•
For a network access user:
password { cipher | simple }
string
•
For a device management
user:
description text
In non-FIPS mode:
password [ { hash |
simple } string ]
In FIPS mode:
password
22
Remarks
N/A
By default, no local users exist.
The default settings are as follows:
•
In non-FIPS mode, no password is
configured for a local user. A local
user can pass authentication after
entering the correct username and
passing attribute checks.
•
In FIPS mode, no password is
configured for a local user. A local
user cannot pass authentication.
By default, no description is configured
for a local user.
You can configure descriptions only for
network access users.
Advertisement
Table of Contents
Troubleshooting
