HPE FlexNetwork 10500 Series Security Configuration Manual page 39
Hide thumbs
Also See for FlexNetwork 10500 Series:
- Security command reference (881 pages) ,
- Network management and monitoring command reference (423 pages) ,
- Configuration manual (407 pages)
Table of Contents
Advertisement
The attribute configured in user group view takes effect on all local users in the user group.
The attribute configured in local user view takes effect only on the local user.
•
Password control attributes—Password control attributes help control password security for
device management users. Password control attributes include password aging time, minimum
password length, password composition checking, password complexity checking, and login
attempt limit.
You can configure a password control attribute in system view, user group view, or local user
view. A password control attribute with a smaller effective range has a higher priority. For more
information about password management and global password configuration, see
password
•
Validity period—Time period in which a network access user is considered valid for
authentication.
Local user configuration task list
Tasks at a glance
(Required.) Configure local user attributes based on the user type:
•
Configuring non-guest local user attributes
•
Configuring local guest attributes
(Optional.)
(Optional.)
(Optional.)
Configuring non-guest local user attributes
Non-guest local user attributes apply to all local users except guests. When you configure non-guest
local user attributes, follow these guidelines:
•
When you use the password-control enable command to globally enable the password
control feature, local user passwords are not displayed.
•
You can configure authorization attributes and password control attributes in local user view or
user group view. The setting in local user view takes precedence over the setting in user group
view.
•
Configure the location binding attribute based on the service types of users.
For 802.1X users, specify the 802.1X-enabled Layer 2 Ethernet interfaces or Layer 2
aggregate interfaces through which the users access the device.
For MAC authentication users, specify the MAC authentication-enabled Layer 2 Ethernet
interfaces or Layer 2 aggregate interfaces through which the users access the device.
For Web authentication users, specify Web authentication-enabled Layer 2 Ethernet
interfaces through which the users access the device.
For portal users, specify the portal-enabled interfaces through which the users access the
device. Specify the Layer 2 Ethernet interfaces if portal is enabled on VLAN interfaces and
the portal roaming enable command is not configured.
To configure non-guest local user attributes:
Step
1.
Enter system view.
2.
Add a local user and
enter local user view.
control."
Configuring user group attributes
Managing local guests
Configuring the auto-delete feature of local users
Command
system-view
local-user user-name [ class
{ manage | network } ]
Remarks
N/A
By default, no local users exist.
22
"Configuring
Advertisement
Table of Contents
Troubleshooting
