Configuring User Group Attributes - HP FlexNetwork 10500 Series Security Configuration Manual
Hide thumbs
Also See for FlexNetwork 10500 Series:
- Configuration manual (512 pages) ,
- Specifications (42 pages) ,
- Datasheet (20 pages)
Table of Contents
Advertisement
Step
8.
(Optional.) Configure
authorization
attributes for the local
user.
9.
(Optional.) Configure
password control
attributes for the local
user.
10. (Optional.) Assign the
local user to a user
group.
Configuring user group attributes
User groups simplify local user configuration and management. A user group contains a group of
local users and has a set of local user attributes. You can configure local user attributes for a user
group to implement centralized user attributes management for the local users in the group. Local
user attributes that are manageable include authorization attributes.
Command
authorization-attribute { acl
acl-number | callback-number
callback-number | idle-cut minute |
ip-pool ipv4-pool-name |
ipv6-pool ipv6-pool-name |
user-profile profile-name |
user-role role-name | vlan vlan-id
| work-directory directory-name }
*
•
Set the password aging time:
password-control aging
aging-time
•
Set the minimum password
length:
password-control length
length
•
Configure the password
composition policy:
password-control
composition type-number
type-number [ type-length
type-length ]
•
Configure the password
complexity checking policy:
password-control
complexity
{ same-character |
user-name } check
•
Configure the maximum login
attempts and the action to
take if there is a login failure:
password-control
login-attempt login-times
[ exceed { lock | lock-time
time | unlock } ]
group group-name
21
Remarks
The following default settings apply:
•
FTP, SFTP, and SCP users have
the root directory of the NAS set as
the working directory. However,
the users do not have permission
to access the root directory.
•
The network-operator user role is
assigned to local users that are
created by a network-admin or
level-15 user on the default MDC.
•
The mdc-operator user role is
assigned to local users that are
created by an mdc-admin or
level-15 user on a non-default
MDC.
The callback-number, ip-pool,
ipv6-pool, and user-profile
authorization attributes are not
supported in the current software
version.
By default, the local user uses
password control attributes of the user
group to which the local user belongs.
Only device management users support
the password control feature.
By default, a local user belongs to the
default user group system.
Advertisement
Table of Contents
Troubleshooting
