Configuring The Attributes Of A Local User - H3C S7500 Series Operation Manual

Operation Manual – AAA & RADIUS & HWTACACS & EAD
H3C S7500 Series Ethernet Switches
Caution:
In string mode, if the VLAN ID assigned by the RADIUS server is a character string
containing only digits (for example, 1024), the switch first regards it as an integer
VLAN ID: the switch transforms the string to an integer value and determines if the
value is in the valid VLAN ID range; if it is, the switch adds the authenticated port to
the VLAN with the integer value as the VLAN ID (VLAN 1024, for example).
To implement dynamic VLAN assignment on a port enabled with both MSTP and
802.1x, make sure you configure the MSTP port as an edge port.

1.3.6 Configuring the Attributes of a Local User

When local scheme is chosen as the AAA scheme, you should create local users on
the switch and configure the related attributes.
Local users are users set on the switch, with each user uniquely identified by a user
name. To make a user who is requesting network service pass through the local
authentication, you should add an entry in the local user database on the switch for the
user.
Table 1-10 Configure the attributes of a local user
Enter system view
Set the password display
mode of all local users
Add a local user and enter
local user view
Set a password for the
specified user
Set the state of the
specified user
To do...
system-view
local-user
password-display-mode
{ cipher-force | auto }
local-user user-name
password { simple |
cipher } password
state { active | block }
Chapter 1 AAA & RADIUS & HWTACACS
Use the command...
1-19
Configuration
Remarks
—
Optional
By default, the password
display mode of all access
users is auto, indicating
the passwords of access
users are displayed in the
modes set with the
password command.
Required
By default, there is no
local user in the system.
Optional
Optional
By default, the local users
are in the active state
once they are created,
that is, they are allowed to
request network services.