HPE FlexNetwork 7500 Series Security Configuration Manual page 39
Hide thumbs
Also See for FlexNetwork 7500 Series:
- Security configuration manual (506 pages) ,
- Command reference manual (474 pages) ,
- Network management and monitoring command reference (430 pages)
Table of Contents
Advertisement
Step
address for the local guest.
12. Configure the validity period
for the local guest.
13. Assign the local guest to a
user group.
14. Configure the local guest
status.
Configuring user group attributes
User groups simplify local user configuration and management. A user group contains a group of
local users and has a set of local user attributes. You can configure local user attributes for a user
group to implement centralized user attributes management for the local users in the group. Local
user attributes that are manageable include authorization attributes.
By default, every new local user belongs to the default user group system and has all attributes of
the group. To assign a local user to a different user group, use the group command in local user
view.
To configure user group attributes:
Step
1.
Enter system view.
2.
Create a user group and
enter user group view.
3.
Configure authorization
attributes for the user
group.
4.
(Optional.) Configure
password control attributes
for the user group.
Command
validity-datetime { from
start-date start-time to
expiration-date expiration-time |
from start-date start-time | to
expiration-date expiration-time }
group group-name
state { active | block }
Command
system-view
user-group group-name
authorization-attribute { acl
acl-number | idle-cut minutes |
ip-pool ipv4-pool-name | ipv6-pool
ipv6-pool-name | session-timeout
minutes | url url-string | vlan vlan-id |
work-directory directory-name } *
•
Set the password aging time:
password-control aging
aging-time
•
Set the minimum password
length:
password-control length
length
•
Configure the password
composition policy:
password-control
composition type-number
type-number [ type-length
type-length ]
•
Configure the password
complexity checking policy:
password-control complexity
25
Remarks
address is specified for a local
guest.
The device sends email notifications
to this address to inform the sponsor
of the guest information.
By default, a local guest does not
expire.
Expired guests cannot pass local
authentication.
By default, a local guest belongs to
the system-defined user group
system.
By default, a local guest is in active
state and is allowed to request
network services.
Remarks
N/A
By default, a system-defined
user group exists. The group
name is system.
By default, no authorization
attributes are configured for a
user group.
By default, the user group uses
the global password control
settings. For more information,
see "Configuring password
control."
Advertisement
Table of Contents
Troubleshooting
