To Next Page

To Previous Page

# Set the local authentication password to 654321 for the user role network-admin.

[Switch] super password role network-admin simple 654321

[Switch] quit

2. Configure the HWTACACS server:

This example uses ACSv4.0.

a. Access the User Setup page.

b. Add a user account named test. (Details not shown.)

c. In the Advanced TACACS+ Settings area, configure the following parameters:

− Select Level 3 for the Max Privilege for any AAA Client option.

If the target user role is only network-admin for temporary user role authorization, you

can select any level from the Max Privilege for any AAA Client option.

− Select the Use separate password option, and specify enabpass as the password.

Figure 22 Configuring advanced TACACS+ settings

d. Select Shell (exec) and Custom attributes, and enter allowed-roles="network-admin" in the

Custom attributes field.

Use a blank space to separate the allowed roles.

Default Chapter1
- Configuration Guide1
- Table of Contents3
Using the CLI9
- CLI Views9
- Accessing the CLI Online Help10
- Using the Undo Form of a Command11
- Entering a Command11
- Understanding Command-Line Error Messages15
- Using the Command History Function15
  - Command Buffering Rules16
  - Repeating Commands in the Command History Buffer for a Line16
- Controlling the CLI Output17
- Saving the Running Configuration21
Login Overview22
Logging in through the Console Port for the First Device Access23
Logging in to the CLI25
- CLI Overview25
- FIPS Compliance26
- Logging in through the Console Port Locally27
- Logging in through Telnet30
  - Configuring Telnet Login on the Device31
  - Using the Device to Log in to a Telnet Server35
- Logging in through SSH36
  - Configuring the Device as an SSH Server36
  - Using the Device to Log in to an SSH Server38
- Logging in through a Pair of Modems38
- Displaying and Maintaining CLI Login41
Accessing the Device through SNMP43
Controlling User Access44
- FIPS Compliance44
- Controlling Telnet/Ssh Logins44
  - Configuration Procedures44
  - Configuration Example44
- Controlling SNMP Access45
  - Configuration Procedure45
  - Configuration Example46
- Configuring Command Authorization47
  - Configuration Procedure47
  - Configuration Example48
- Configuring Command Accounting49
  - Configuration Procedure50
  - Configuration Example50
Configuring RBAC52
- Overview52
  - Permission Assignment52
  - Assigning User Roles54
- FIPS Compliance55
- Configuration Task List55
- Creating User Roles55
- Configuring User Role Rules55
  - Configuration Restrictions and Guidelines56
  - Configuration Procedure56
- Configuring Feature Groups57
- Configuring Resource Access Policies57
- Assigning User Roles59
- Configuring Temporary User Role Authorization61
- Displaying RBAC Settings63
- RBAC Configuration Examples63
- Troubleshooting RBAC75
  - Local Users Have more Access Permissions than Intended75
  - Login Attempts by RADIUS Users Always Fail75
Configuring FTP77
- FIPS Compliance77
- Using the Device as an FTP Server77
- Using the Device as an FTP Client80
Configuring TFTP87
- FIPS Compliance87
- Configuring the Device as an Ipv4 TFTP Client87
- Configuring the Device as an Ipv6 TFTP Client88
Managing the File System89
- FIPS Compliance89
- Storage Medium Naming Rules89
- File Name Formats89
- Managing Files90
- Managing Directories93
- Managing Storage Media94
- Setting the Operation Mode for Files and Folders96
Managing Configuration Files97
- Overview97
- FIPS Compliance99
- Enabling Configuration Encryption100
- Displaying Configuration Differences between Configuration Files100
- Saving the Running Configuration101
  - Restrictions and Guidelines101
  - Using Different Methods to Save the Running Configuration101
- Configuring Configuration Rollback102
- Configuring Configuration Commit Delay105
- Specifying a Next-Startup Configuration File106
- Backing up the Main Next-Startup Configuration File to a TFTP Server107
- Restoring the Main Next-Startup Configuration File from a TFTP Server107
- Deleting a Next-Startup Configuration File108
- Displaying and Maintaining Configuration Files108
Upgrading Software110
- Overview110
- Upgrade Methods112
- Upgrade Procedure Summary112
- Preparing for the Upgrade113
- Preloading the Boot ROM Image to Boot ROM113
- Specifying Startup Images and Completing the Upgrade113
  - Specifying Startup Images for All Devices in Bulk113
  - Specifying Startup Images for Devices One by One114
- Displaying and Maintaining Software Image Settings115
- Software Upgrade Examples116
  - Example of Software Upgrade through a Reboot116
  - Patch Installation Example117
Performing an ISSU119
- Overview119
  - ISSU Methods119
  - ISSU Commands119
- Feature and Software Version Compatibility120
- Preparing for ISSU120
- Performing an ISSU by Using Issu Commands122
  - Upgrading a Multichassis IRF Fabric122
  - Upgrading a Single-Chassis IRF Fabric124
- Performing an ISSU by Using Install Commands125
- Displaying and Maintaining ISSU128
- Troubleshooting ISSU129
  - Command129
- ISSU Examples for Using Issu Commands129
- ISSU Examples for Using Install Commands136
  - Software Image Upgrade Example136
  - Software Image Rollback Example138
Managing the Device140
- Device Management Task List140
- Configuring the Device Name140
- Configuring the System Time141
  - Specifying the System Time Source141
  - Setting the System Time141
- Enabling Displaying the Copyright Statement142
- Configuring Banners142
- Setting the Table Capacity Mode144
- Rebooting the Device144
- Scheduling a Task145
  - Configuration Procedure146
  - Schedule Configuration Example147
- Disabling Password Recovery Capability151
- Specifying the Preferred Airflow Direction151
- Setting the Port Status Detection Timer152
- Configuring CPU Usage Monitoring152
- Setting Memory Thresholds152
- Configuring the Temperature Alarm Thresholds154
- Disabling All USB Interfaces154
- Verifying and Diagnosing Transceiver Modules155
  - Verifying Transceiver Modules155
  - Diagnosing Transceiver Modules155
- Specifying an ITU Channel Number for a Transceiver Module156
- Restoring the Factory-Default Settings and States156
- Displaying and Maintaining Device Management Configuration157
Using Tcl159
- Tcl Usage Guidelines and Restrictions159
- Executing Comware Commands in Tcl Configuration View159
Using Python161
- Entering the Python Shell161
- Executing a Python Script161
- Python Usage Example161
Comware V7 Extended Python API163
- Importing and Using the Comware V7 Extended Python API163
- Comware V7 Extended Python API Functions163
Using Automatic Configuration168
- Overview168
- Automatic Configuration Task List168
- Automatic Configuration Examples172
Document Conventions and Icons182
- Conventions182
- Network Topology Icons183
Support and Other Resources184
- Accessing Hewlett Packard Enterprise Support184
- Accessing Updates184
Index187

Brand	HPE
Model	FlexNetwork 5510 HI Series
Category	Switch
Language	English

HPE FlexNetwork 5510 HI Series Fundamentals Configuration Guide

Table of Contents

Other manuals for HPE FlexNetwork 5510 HI Series

Questions and Answers:

HPE FlexNetwork 5510 HI Series Specifications

Related product manuals