HP 5800 Series Configuration Manual page 23

Hide thumbs Also See for 5800 Series:

Command reference manual (396 pages)

Quickspecs (53 pages)

Configuration manual (294 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

page of 200

/ 200
Contents
Table of Contents
Bookmarks

Table of Contents

Step

parameters

Example of configuring a user privilege level by using AAA authentication parameters

# You are required to authenticate the users that Telnet to the switch through VTY 1, verify their username and

password, and specify the user privilege level as 3.

<Sysname> system-view

[Sysname] user-interface vty 1

[Sysname-ui-vty1] authentication-mode scheme

[Sysname-ui-vty1] quit

[Sysname] local-user test

[Sysname-luser-test] password cipher 12345678

[Sysname-luser-test] service-type telnet

When users Telnet to the switch through VTY 1, they must enter username test and password 12345678. After

passing the authentication, the users can only use the commands of level 0. If the users want to use

commands of levels 0, 1, 2 and 3, the following configuration is required:

[Sysname-luser-test] authorization-attribute level 3

Configuring the user privilege level under a user interface

If the authentication mode of a user interface is scheme, and SSH publickey authentication type (only a

•

username is needed for this authentication type) is adopted, the user privilege level of users logging

into the user interface is the user interface level.

If the authentication mode of a user interface is none or password, the user privilege level of users

•

logging into the user interface is the user interface level.

To configure the user privilege level under a user interface (SSH publickey authentication type):

Step

Configure the authentication type

for SSH users as publickey

Enter system view

Enter user interface view

Configure the authentication mode

for any user who uses the current

user interface to log in to the switch

Command

Using remote

authentication

(RADIUS,

Configure the user privilege level

HWTACACS,

on the authentication server

and LDAP

authentications)

Command

For more information about SSH,

see Security Configuration Guide.

system-view

user-interface { first-num1

[ last-num1 ] | vty first-num2

[ last-num2 ] }

authentication-mode scheme

Remarks

•

Remarks

Required if the SSH login mode is

adopted, and only username is

needed during authentication.

After the configuration, the

authentication mode of the

corresponding user interface must

be set to scheme.

—

Required

By default, the authentication

mode for VTY users is password,

and no authentication is needed

for AUX users.

For remote authentication, if

you do not configure the user

privilege level, the user

privilege level depends on the

default configuration of the

authentication server.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

5820x series A5820x series A5800 series

HP 5800 Series Configuration Manual page 23

Hide quick links:

Related Manuals for HP 5800 Series

Related Products for HP 5800 Series

This manual is also suitable for:

Table of Contents