3com S7906E インストール手順
1-11
Level
Privilege
Description
3 Manage
Influences the basic operation of the system and the
system support modules for service support. By default,
commands at this level involve file system, FTP, TFTP,
Xmodem command download, user management, level
setting, as well as parameter setting within a system (the
last case involves those non-protocol or non RFC
provisioned commands).
system support modules for service support. By default,
commands at this level involve file system, FTP, TFTP,
Xmodem command download, user management, level
setting, as well as parameter setting within a system (the
last case involves those non-protocol or non RFC
provisioned commands).
Configuring user privilege level
User privilege level can be configured by using AAA authentication parameters or under a user
interface.
1) Configure user privilege level by using AAA authentication parameters
If the user interface authentication mode is scheme when a user logs in, and username and password
are needed at login, then the user privilege level is specified in the configuration of AAA authentication.
Follow these steps to configure user privilege level by using AAA authentication parameters:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Enter user interface view
user-interface { first-num1
[ last-num1 ] | { aux | vty }
first-num2 [ last-num2 ] }
[ last-num1 ] | { aux | vty }
first-num2 [ last-num2 ] }
—
Configure the authentication
mode for logging in to the user
interface as scheme
mode for logging in to the user
interface as scheme
authentication-mode scheme
Required
By default, the authentication
mode for VTY users is
password, and no
authentication is needed for
AUX users.
mode for VTY users is
password, and no
authentication is needed for
AUX users.
Exit to system view
quit
—
Configure the authentication
mode for SSH users as
password
mode for SSH users as
password
For the details, refer to SSH2.0
Configuration in the Security
Volume.
Configuration in the Security
Volume.
Required if users use SSH to
log in, and username and
password are needed at
authentication
log in, and username and
password are needed at
authentication
Using local
authentication
authentication
z
Use the local-user
command to create a local
user and enter local user
view.
command to create a local
user and enter local user
view.
z
Use the level keyword in the
authorization-attribute
command to configure the
user level.
authorization-attribute
command to configure the
user level.
Configure the
user privilege
level by using
AAA
authentication
parameters
user privilege
level by using
AAA
authentication
parameters
Using remote
authentication
(RADIUS,
HWTACACS,
and LDAP
authentication
s)
authentication
(RADIUS,
HWTACACS,
and LDAP
authentication
s)
Configure user level on the
authentication server
authentication server
User either approach
z
For local authentication, if
you do not configure the
user level, the user level is
0, that is, users of this level
can use commands with
level 0 only.
you do not configure the
user level, the user level is
0, that is, users of this level
can use commands with
level 0 only.
z
For remote authentication, if
you do not configure the
user level, the user level
depends on the default
configuration of the
authentication server.
you do not configure the
user level, the user level
depends on the default
configuration of the
authentication server.