Configuring User Privilege And Command Levels; Introduction; Configuring A User Privilege Level - H3C SR6600 Fundamentals Configuration Manual

Hide thumbs Also See for SR6600:

Command reference manual (265 pages)

Configuration manual (145 pages)

Manual (80 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

page of 184

/ 184
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring User Privilege and Command Levels

Introduction

To avoid unauthorized access, the switch defines user privilege levels and command levels. User

privilege levels correspond to command levels. When a user at a privilege level logs in, the user can

only use commands at that level, and lower levels.

All the commands are categorized into four levels, which are visit, monitor, system, and manage from

low to high, and identified respectively by 0 through 3.

Table 1-5 Default command levels

Level

Configuring a User Privilege Level

A user privilege level can be configured by using AAA authentication parameters or under a user

interface.

Configure user privilege level by using AAA authentication parameters

If the authentication mode of a user interface is scheme, the user privilege level of users logging into the

user interface is specified in AAA authentication configuration.

Follow these steps to configure the user privilege level by using AAA authentication parameters:

To do...

Enter system view

Enter user interface view

Privilege

Involves commands for network diagnosis and commands for accessing an

external device. Configuration of commands at this level cannot survive a device

restart. Upon device restart, the commands at this level will be restored to the

Visit

default settings.

Commands at this level include ping, tracert, telnet and ssh2.

Involves commands for system maintenance and service fault diagnosis.

Commands at this level are not allowed to be saved after being configured. After

the switch is restarted, the commands at this level will be restored to the default

Monitor

settings.

Commands at this level include debugging, terminal, refresh, reset, and send.

Provides service configuration commands, including routing configuration

commands and commands for configuring services at different network levels.

System

By default, commands at this level include all configuration commands except for

those at manage level.

Involves commands that influence the basic operation of the system and

commands for configuring system support modules.

By default, commands at this level involve the configuration commands of file

Manage

system, FTP, TFTP, Xmodem download, user management, level setting, and

parameter settings within a system (which are not defined by any protocols or

RFCs).

system-view

user-interface { first-num1

[ last-num1 ] | { aux | console |

vty } first-num2 [ last-num2 ] }

Table 1-5

Description

Use the command...

1-15

describes the levels of the commands.

Remarks

—

Table of Contents

Configuring User Privilege And Command Levels; Introduction; Configuring A User Privilege Level - H3C SR6600 Fundamentals Configuration Manual

Configuring User Privilege and Command Levels

Introduction

Configuring a User Privilege Level

Related Manuals for H3C SR6600

Related Content for H3C SR6600

Table of Contents