To Next Page

To Previous Page

Ste

Command

Remarks

2. Create a user role and

enter user role view.

role name role-name

By default, the system has the following

predefined user roles:

• network-admin.

• network-operator.

• level-n (where n equals an integer in

the range 0 to 15).

• security-audit.

Among these user roles, only the

permissions and description of the

level-0 to level-14 user roles are

configurable.

3. (Optional.) Configure a

description for the user

role.

description text

By default, a user role does not have a

description.

Configuring user role rules

You can configure command, feature, feature group, XML element, and OID rules to permit or deny the

access of a user role to specific commands, XML elements, and MIB nodes.

Configuration restrictions and guidelines

When you configure RBAC user role rules, follow these restrictions and guidelines:

• You can configure up to 256 user-defined rules for a user role. The total number of user-defined user

role rules cannot exceed 1024.

• Any rule modification, addition, or removal for a user role takes effect only on users who are logged

in with the user role after the change.

The following guidelines apply to non-OID rules:

• If two user-defined rules of the same type conflict, the rule with the higher ID takes effect. For

example, the user role can use the tracert command but not the ping command if the user role

contains rules configured by using the following commands:

{ rule 1 permit command ping

{ rule 2 permit command tracert

{ rule 3 deny command ping

• For level-0 to level-14 user roles, if a predefined user role rule and a user-defined user role rule

conflict, the user-defined user role rule takes effect.

The following guidelines apply to OID rules:

• If the MIB node specified in a rule is a child node of the MIB nodes specified in other rules, only this

rule takes effect. For example, a user role cannot access the MIB node with OID

1.3.6.1.4.1.25506.141.3.0.1 if the user role contains rules configured by using the following

commands:

{ rule 1 permit read write oid 1.3.6

{ rule 2 deny read write oid 1.3.6.1.4.1

Questions and Answers:

Need help?

Do you have a question about the HP 5130 EI series and is the answer not in the manual?

HP 5130 EI series Specifications

General

Layer	Layer 3
VLANs	4094
Multicast Protocols	IGMP, PIM
Operating Temperature	0°C to 45°C
Model	HP 5130 EI
Ports	24 or 48 10/100/1000 ports
Uplink Ports	4 x 1/10G SFP+
Stacking	Up to 9 switches
Power over Ethernet (PoE)	PoE+ (IEEE 802.3at) on PoE+ models (JG936A, JG937A)
Management	Web, CLI, SNMP
MAC Address Table Size	32, 000 entries
Routing Protocols	OSPF, RIP, BGP, static routing
Operating Humidity	10% to 90% (non-condensing)