HP 10500 Series Configuration Manual page 62

Hide thumbs Also See for 10500 Series:

Security configuration manual (596 pages)

Configuration manual (512 pages)

Specifications (42 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

Table of Contents

User role name

mdc-admin

mdc-operator

level-n (n = 0 to 15)

security-audit

Permissions

Accesses all the features and resources in the administered MDC, except

for the display security-logfile summary, info-center security-logfile

directory, and security-logfile save commands.

•

Accesses the display commands for all the features and resources

available in the administered MDC, except for commands such as

display history-command all and display security-logfile summary. To

display all accessible commands of the user role, use the display role

name mdc-operator command.

•

Enables local authentication login users to change their own password.

•

level-0—Has access to diagnostic commands, including ping, quit,

ssh2, super, system-view, telnet, and tracert. Level-0 access rights are

configurable.

•

level-1—Has access to the display commands (except display

history-command all) of all features and resources in the system, in

addition to all access rights of the user role level-0. Level- 1 access rights

are configurable.

•

level-2 to level-8, and level-10 to level-14—Have no access rights by

default. Access rights are configurable.

•

level-9—Has access to all features and resources except those in the

following list. If you are logged in with a local user account that has a

level-9 user role, you can change the password in the local user account.

Level-9 access rights are configurable.

RBAC non-debugging commands.

Local users.

MDCs.

File management.

Device management.

The display history-command all command.

•

level-15—Has the same rights as network-admin on the default MDC,

and has the same rights as mdc-admin on non-default MDCs.

Security log manager. The user role has the following access to security log

files:

•

Access to the commands for displaying and maintaining security log

files (for example, the dir, display security-logfile summary, and more

commands).

•

Access to the commands for managing security log files and security log

file system (for example, the info-center security-logfile directory, mkdir,

and security-logfile save commands).

For more information about security log management, see Network

Management and Monitoring Configuration Guide. For more information

about file system management, see "Managing the file system."

IMPORTANT:

Only the security-audit user role has access to security log files. You can

configure other user roles to include the access permission of security log files,

but the configuration does not take effect.

Table of Contents

Show Quick Links

Quick Links:
Using the Cli

Hide quick links:

Table of Contents

HP 10500 Series Configuration Manual page 62

Hide quick links:

Troubleshooting

Related Products for HP 10500 Series

HP 10500 Series Configuration Manual page 62

Hide quick links:

Troubleshooting

Related Manuals for HP 10500 Series

Related Products for HP 10500 Series

Table of Contents