EasyManua.ls Logo

H3C WA2612-AGN - Page 86

H3C WA2612-AGN
137 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
11-11
To do… Use the command… Remarks
Using local
authentication
z Use the local-user command
to create a local user and enter
local user view.
z Use the level keyword in the
authorization-attribute
command to configure the user
level.
Configure the
user privilege
level by using
AAA
authentication
parameters
Using remote
authentication
(RADIUS,
HWTACACS,
and LDAP
authentications)
Configure user level on the
authentication server
User either approach
z For local authentication, if you
do not configure the user level,
the user level is 0, that is, users
of this level can use commands
with level 0 only.
z For remote authentication, if
you do not configure the user
level, the user level depends on
the default configuration of the
authentication server.
z For more information about user interfaces, see Logging In to the AP in the Fundamentals
Configuration Guide. For more information about the user-interface, authentication-mode and
user privilege level commands, see Logging In to the AP in the Fundamentals Command
Reference.
z For more information about the AAA authentication, see AAA in the Security Configuration Guide.
For more information about the local-user and authorization-attribute commands, see AAA in
the Security Command Reference.
2) Example of configuring user privilege level by using AAA authentication parameters
# Authenticate the users telnetting to the AP through VTY 1, verify their usernames and passwords
locally, and specify the user privilege level as 3.
<Sysname> system-view
[Sysname] user-interface vty 1
[Sysname-ui-vty1] authentication-mode scheme
[Sysname-ui-vty1] quit
[Sysname] local-user test
[Sysname-luser-test] password cipher 123
[Sysname-luser-test] service-type telnet
After the above configuration, when users telnet to the AP through VTY 1, they need to input username
test and password 123. After passing the authentication, users can only use the commands of level 0. If
the users need to use commands of levels 0, 1, 2 and 3, the following configuration is required:
[Sysname-luser-test] authorization-attribute level 3
3) Configure the user privilege level under a user interface
If a user logs in using the none or password mode (namely, no username is needed), the user privilege
level is the user interface level.

Table of Contents

Other manuals for H3C WA2612-AGN

Preview: Web-Based Configuration Guide
Web-Based Configuration Guide447 pages
Preview: Configuration Guide
Configuration Guide41 pages
Preview: Command Reference
Command Reference131 pages

Related product manuals