EasyManuals Logo

HP 5920 Series Fundamentals Configuration Guide

HP 5920 Series
215 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #66 background imageLoading...
Page #66 background image
58
If the AAA server assigns the security-audit user role and other user roles to the same user, only the
security-audit user role takes effect.
NOTE:
• To be compatible with privilege-based access control, the device automatically converts privilege-based
user levels (0 to 15) assigned by an AAA server to RBAC user roles (level-0 to level-15).
• If the AAA server assigns a privilege-based user level and a user role to a user, the user can use the
collection of commands and resources accessible to both the user level and the user role.
Assigning user roles to local AAA authentication users
Configure user roles for local AAA authentication users in their local user accounts. Every local user has
a default user role. If this default user role is not suitable, delete it.
If a local user is the only one with the security-audit user role, this local user cannot be deleted.
The security-audit user role is mutually exclusive with other user roles.
• When you assign the security-audit user role to a local user, the system requests confirmation to
delete all the other user roles of the user.
• When you assign the other user roles to a local user who has the security-audit user role, the system
requests confirmation to delete the security-audit user role for the user.
To assign a user role to a local user:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Create a local user and
enter local user view.
local-user user-name class
{ manage | network }
N/A
3. Authorize the user to have a
user role.
authorization-attribute user-role
role-name
Repeat this step to assign a maximum
of 64 user roles to the user.
By default, network-operator is
assigned to local users created by a
network-admin or level-15 user.
Assigning user roles to non-AAA authentication users on user
lines
Specify user roles for the following two types of login users on the user lines:
• Users who use password authentication or no authentication.
• SSH clients that use publickey or password-publickey authentication. User roles assigned to these
SSH clients are specified in their respective local device management user accounts.
For more information about user lines, see "Login overview" and "Logging in to the CLI." Fo
r more
information about SSH, see Security Configuration Guide.
To assign a user role to non-AAA authentication users on a user line:

Table of Contents

Other manuals for HP 5920 Series

Preview: Command Reference
Command Reference607 pages
Preview: Configuration Guide
Configuration Guide424 pages
Preview: Installation Guide
Installation Guide63 pages
Preview: Troubleshooting Guide
Troubleshooting Guide52 pages
Preview: Fc And Fcoe Configuration Guide
Fc And Fcoe Configuration Guide257 pages
Preview: Compliance And Safety Manual
Compliance And Safety Manual58 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP 5920 Series and is the answer not in the manual?

HP 5920 Series Specifications

General IconGeneral
BrandHP
Model5920 Series
CategorySwitch
LanguageEnglish

Related product manuals