Parameters
rolename: Specifies a user role, a case-sensitive string of 1 to 63 characters. The user role must exist in
the system. If no user role is specified, you are assigned the user role network-admin.
Usage guidelines
To enable users to obtain the user role that they are not logged in with, you must configure user role
authentication.
•
If no local password is configured in the local password authentication (local), an AUX user can
obtain user role authorization by either entering a string or not entering anything.
If no local password is configured in the local-then-remote authentication (local scheme):
•
A VTY user performs remote authentication.
An AUX user can obtain user role authorization by either entering a string or not entering
anything.
Examples
# Obtain the user role network-operator.
<Sysname> super network-operator
Password:
User privilege role is network-operator, and only those commands can be used that authorized
to the role.
Related commands
authentication super (Security Command Reference)
•
super authentication-mode
•
•
super password
super authentication-mode
Use super authentication-mode to set an authentication mode when you obtain the user role that you are
not logged in with.
Use undo super authentication-mode to restore the default.
Syntax
super authentication-mode { local | scheme } *
undo super authentication-mode
Default
Local password authentication applies.
Views
System view
Predefined user roles
network-admin
Parameters
local: Enables local password authentication.
scheme: Enables remote AAA authentication.
70