H3C WA Series Fundamentals Configuration Manual page 89

Wlan access points

Hide thumbs Also See for WA Series:

Layer 2 command reference (133 pages)

Command reference manual (105 pages)

Configuration manual (84 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

page of 137

/ 137
Contents
Table of Contents
Bookmarks

Table of Contents

level switch succeeds; for the user logged in from any of the AUX, TTY, or VTY user interfaces, the

AAA authentication is performed.

scheme local: First scheme and then local, that is, AAA authentication is performed first, and if

the AAA configuration is invalid (domain parameters or authentication scheme are not configured)

or the server does not respond, the authentication requiring the local password is performed.

If the authentication mode for login users of the current user interface is set to none or password with

the authentication-mode none or authentication-mode password command, the user does not

need to input the username when logging in; therefore, if scheme authentication is required for the

privilege level switch, the system prompts for the username and password (the username and the

password must be the same with those configured on the AAA server); in other cases, no username is

required.

Follow these steps to switch the user privilege level:

To do...

Enter system view

Set the authentication mode for

user privilege level switch

Configure the password (used for

the local authentication mode) for

user privilege level switch

Exit to user view

Switch the user privilege level

When you configure the password for switching the user privilege level with the super password

command, the user privilege level is 3 if no user privilege level is specified.

The password for switching the user privilege level can be displayed in both cipher text and simple

text. You are recommended to adopt the former as the latter is easily cracked.

When the authentication mode is set to local, you need to configure the local password before

switching a user to a higher user privilege level.

When the authentication mode is set to scheme, you need to configure AAA related parameters

before switching a user to a higher user privilege level.

The timeout time of AAA authentication is 120 seconds, after that, the AAA authentication is

considered as no response.

The privilege level switch fails after three consecutive unsuccessful password attempts.

Use the command...

system-view

super authentication-mode

{ local | scheme } *

super password [ level

user-level ] { simple | cipher }

password

quit

super [ level ]

11-14

Remarks

—

Optional

local by default.

Required

By default, no password is

configured.

—

Required

When logging in to the AP, a user

has a user privilege level, which is

decided by user interface or

authentication user level.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

Wa2200 series Wa2600 series Wa2210-ag Wa2220-ag Wa2210x-g Wa2220x-ag ... Show all

H3C WA Series Fundamentals Configuration Manual page 89

Hide quick links:

Related Manuals for H3C WA Series

Related Products for H3C WA Series

This manual is also suitable for:

Table of Contents