EasyManuals Logo

HPE FlexNetwork 5510 HI Series Fundamentals Configuration Guide

HPE FlexNetwork 5510 HI Series
209 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #26 background imageLoading...
Page #26 background image
18
Login authentication modes
You can configure login authentication to prevent illegal access to the device CLI.
In non-FIPS mode, the device supports the following login authentication modes:
•
None—Disables authentication. This mode allows access without authentication and is
insecure.
•
Password—Requires password authentication.
•
Scheme—Uses the AAA module to provide local or remote login authentication. You must
provide a username and password at login.
In FIPS mode, the device supports only the scheme authentication mode.
Different login authentication modes require different user line configurations, as shown in Table 9.
Table 9 Configuration required for different login authentication modes
Authentication mode
Configuration tasks
None
Set the authentication mode to
none
.
Password
1. Set the authentication mode to password.
2. Set a password.
Scheme
1. Set the authentication mode to scheme.
2. Configure login authentication methods in ISP domain view. For more
information, see Security Configuration Guide.
User roles
A user is assigned user roles at login. The user roles specify the commands that the user can
execute. For more information about user roles, see "Configuring RBAC."
The device assigns user roles based on the login authentication mode, user type, and login method.
•
In none or password authentication mode, the device assigns the user roles specified for the
user line.
•
In scheme authentication mode, the device uses the following rules to assign user roles:
ï‚¡ For an SSH login user who uses publickey or password-publickey authentication, the device
assigns the user roles specified for the local device management user with the same name.
ï‚¡ For other users, the device assigns user roles according to the user role configuration of the
AAA module. If the AAA server does not assign any user roles and the default user role
feature is disabled, a remote AAA authentication user cannot log in.
FIPS compliance
The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for
features, commands, and parameters might differ in FIPS mode and non-FIPS mode. For more
information about FIPS mode, see Security Configuration Guide.
Telnet login is not supported in FIPS mode.

Table of Contents

Other manuals for HPE FlexNetwork 5510 HI Series

Preview: Configuration Guide
Configuration Guide572 pages
Preview: Security Configuration Guide
Security Configuration Guide551 pages
Preview: Layer 3 - Ip Routing Configuration Guide
Layer 3 - Ip Routing Configuration Guide486 pages
Preview: Network Management And Monitoring Configuration Guide
Network Management And Monitoring Configuration Guide331 pages
Preview: Macsec Configuration Guide
Macsec Configuration Guide27 pages
Preview: Acl And Qos Configuration Guide
Acl And Qos Configuration Guide114 pages
Preview: Mpls Configuration Guide
Mpls Configuration Guide505 pages
Preview: Openflow Configuration Guide
Openflow Configuration Guide39 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork 5510 HI Series and is the answer not in the manual?

HPE FlexNetwork 5510 HI Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork 5510 HI Series
CategorySwitch
LanguageEnglish

Related product manuals