3com 3031 Instruccion De Instalación
8
U
SER
M
ANAGEMENT
This chapter covers the following topics:
■
■
■
■
User Management
Overview
Overview
A router is not configured with a user password when it is powered on for the first
time. In that condition, any user can perform configuration on the router as long
as connecting his PC with the router via a Console port. The remote user can also
access the router via Telnet if the router has been configured with IP address of
Main Processing Unit (MPU) or the interface board, and it is possible for the
remote user to access the network by establishing PPP connection with the router.
To ensure the network security, it is necessary to configure a user and user
password for the router to facilitate the management of the user.
time. In that condition, any user can perform configuration on the router as long
as connecting his PC with the router via a Console port. The remote user can also
access the router via Telnet if the router has been configured with IP address of
Main Processing Unit (MPU) or the interface board, and it is possible for the
remote user to access the network by establishing PPP connection with the router.
To ensure the network security, it is necessary to configure a user and user
password for the router to facilitate the management of the user.
This chapter focuses on the authentication management over terminal users and
Telnet users. Refer to Part IX “Security” for a description of other user types and
AAA RADIUS authentication.
Telnet users. Refer to Part IX “Security” for a description of other user types and
AAA RADIUS authentication.
User Classification
According to the service for a user, the user of a router can be classified into the
following types:
following types:
■
HyperTerminal user, accessing the router via a Console port or AUX port;
■
Telnet user, accessing the router via Telnet command;
■
FTP user, establishing FTP connection with the router to transmit packets;
■
PPP user, establishing PPP connections (such as dialing and PPPoA) with the
router to access the network.
router to access the network.
■
SSH user, establishing SSH connection with the router to access the network;
■
PAD user, establishing PAD connection with the router to access the network.
A user can have several services at the same time. In this way, only one user can
execute multiple functions.
execute multiple functions.
User Priority
The system provides hierarchical management to the HyperTerminal user and
Telnet user. Similar to the priority of commands, the user priority is divided into
Visit, Monitor, Config and Manage, with the priority identifier from 0 to 3. The
priority of the user determines which priority of commands he can access. In the
case of non-authentication or password authentication, it is the priority of the user
Telnet user. Similar to the priority of commands, the user priority is divided into
Visit, Monitor, Config and Manage, with the priority identifier from 0 to 3. The
priority of the user determines which priority of commands he can access. In the
case of non-authentication or password authentication, it is the priority of the user