Alcatel-Lucent AOS-W 6.5.3.x - Understanding Default Management User Roles

To Next Page

To Previous Page

Predefined Role Description

Can This Role be

Deleted? (Yes/No)

user-role <ssid>-

captiveportal-profile

When utilizing the WLAN Wizard and you do not

have a PEF NG installed and you are configuring

an Internal or Guest WLAN with captive portal

enabled, the switch creates an implicit user role

with the same name as the captive portal profile,

<ssid>-captiveportal-profile.

This implicit user role allows only DNS and DHCP

traffic between the client and network and directs

all HTTP or HTTPS requests to the captive portal.

You cannot directly modify the implicit user role

or its rules. Upon authentication, captive portal

clients are allowed full access to their assigned

VLAN. Once the WLAN configuration is pushed to

the switch, the WLAN wizard will associate the

new role with the initial user role that you specify

in the AAA profile. This role will not be visible to

the user in the WLAN wizard.

Yes

user-role voice

session-acl sip-acl

session-acl noe-acl

session-acl svp-acl

session-acl vocera-acl

session-acl skinny-acl

session-acl h323-acl

session-acl dhcp-acl

session-acl tftp-acl

session-acl dns-acl

session-acl icmp-acl

This role can be applied to voice devices in order

to automatically permit and prioritize all VoIP

protocols.

Yes

Understanding Default Management User Roles

The AOS-W software includes predefined management user roles.

If you upgrade from a previous AOS-W release, your existing configuration may have different management roles.

The information in this section only describes the predefined management roles for this release.

Predefined Role Permissions

root This role permits access to all management functions (commands and operations)

on the switch.

read-only

This role permits access to CLI show commands or WebUI monitoring pages only.

guest-provisioning This role permits access to configuring guest users in the switch’s internal

database only. This user only has access via the WebUI to create guest accounts;

there is no CLI access.

Guest-provisioning tasks include creating or generating the user name and

password for a guest account as well as configuring when the account expires.

Table 271: Predefined Management Roles

AOS-W 6.5.3.x | User Guide Behavior and Defaults | 1096

Alcatel-Lucent AOS-W 6.5.3.x - Understanding Default Management User Roles

Table of Contents