HP PROCURVE 6208M-SX Installation And Getting Started Manual: Multiple Levels Of Access Control

Hewlett-packard switch user manual.
Hide thumbs
To display general system information, click on a blank area of the device's management module. If the
chassis display is disabled as shown in this example, click on the object shown in the chassis window. The
object contains the product name.
To display information about a specific port, click on the port on the front panel display. (This option is
available only when you enable display of the front panel. See the note below.)
Click on the links in the left-hand frame or on the bottom of the display to view statistics or to view and change
configuration parameters.
NOTE: The Web management interface automatically refreshes the system information at regular intervals,
including the link LEDs for the ports. To streamline performance, display of the device's front panel is disabled by
default. To enable front panel display, select the Preference link, select the Enable radio button for Front panel
display, then click Apply. Select Reload or Refresh on your browser's tool bar to immediately see the effect of the

Multiple Levels of Access Control

HP switches and routing switches provide multiple levels of access to allow system administrators complete
configuration control while protecting the system from unauthorized changes.
CLI Access
Three levels of password protection offer a range of access points for various users within the network. The three
levels are:
Super user – This setting allows a user unlimited access to all levels of the CLI. This level is generally
reserved for system administrators within the network. The super user is also the only one who can assign a
password access level to another user.
Configure port – This level allows a user to configure interface parameters only and to view any show
command displays.
Read only – A user at this password level will only be able to view show command displays within the CLI.
No configuration is allowed at this password level.
Web Management Interface Access
By default, access through the Web management interface is controlled by passwords associated with the "get"
(read-only) and "set" (read-write) SNMP community strings. The default password for "get" is "public". There is
not default password for "set". You can configure SNMP community strings using CLI commands. See
"Establishing SNMP Community Strings" on page 3-13. You also can use locally configured user names and
passwords to control access through the Web management interface. See "Local Access Control" on page 7-9.
Local Access Control
You can configure up to 16 user names and passwords to control access to an HP switch or routing switch. The
passwords and user names can be used for accessing devices using the CLI and the Web management interface.
For each management platform, you configure an authentication-method list that specifies sources the device can
consult to authenticate an access attempt and the order in which to consult the sources. For example, you can
configure an authentication-method list to authenticate CLI management access based on a local access list first
(user names and passwords you have configured), then a RADIUS server, then the enable passwords.
See "Setting Up Local User Accounts" on page 3-11 and "Configuring Authentication-Method Lists" on page 3-44.
TACACS and TACACS+ Security
You can secure CLI access to the switch or routing switch by configuring the device to consult a Terminal Access
Controller Access Control System (TACACS) or TACACS+ server to authenticate user names and passwords.
The software supports authentication, authorization, and accounting (AAA). See "Configuring TACACS/
TACACS+ Security" on page 3-16.
Software Overview
7 - 9


   Related Manuals for HP PROCURVE 6208M-SX

Comments to this Manuals

Symbols: 0
Latest comments: