To Next Page

To Previous Page

Step Command Remarks

15. Configure password control

attributes for the user group.

• Set the password aging time:

password-control aging

aging-time

• Set the minimum password

length:

password-control length

length

• Configure the password

composition policy:

password-control

composition type-number

type-number [ type-length

type-length ]

Optional.

By default, the user group uses

the following global settings:

• A 90-day password aging

time.

• A minimum password length

of 10 characters.

• In non-FIPS mode, at least

one character type and at

least one character for each

type.

• In FIPS mode, four character

types and at least one

character for each type.

In FIPS mode, the value for the

type-number argument must be 4.

For more information about the

password control attribute

commands, see HPE

FlexNetwork MSR Router Series

Comware 5 Security Command

Reference.

16. Configure authorization

attributes for the user group.

authorization-attribute

{

acl

acl-number |

callback-number

callback-number |

idle-cut

minute

level

level |

user-profile

profile-name |

vlan

vlan-id |

work-directory

directory-name }

Optional.

By default, no authorization

attribute is configured for a user

group.

Displaying and maintaining local users and local user groups

Task Command Remarks

Display local user

information.

• In non-FIPS mode:

display local-user [ idle-cut { disable | enable } |

service-type { dvpn | ftp | lan-access | pad | portal

| ppp | ssh | telnet | terminal | web } | state { active

| block } | user-name user-name | vlan vlan-id ] [ |

{ begin | exclude | include } regular-expression ]

• In FIPS mode:

display local-user [ idle-cut { disable | enable } |

service-type { lan-access | portal | ssh | terminal |

web } | state { active | block } | user-name

user-name | vlan vlan-id ] [ | { begin | exclude |

inc

lude } regular-expression ]

Available in any

view.

The

ftp

and

telnet

keywords

are not

supported in

FIPS mode.

Display the user group

configuration.

display user-group

[ group-name ] [

{

begin

exclude

include

} regular-expression ]

Available in any

view.

Configuring RADIUS schemes

A RADIUS scheme specifies the RADIUS servers that the device can cooperate with and defines a

set of parameters that the device uses to exchange information with the RADIUS servers. There

might be authentication/authorization servers and accounting servers, or primary servers and

secondary servers. The parameters include the IP addresses of the servers, the shared keys, and

the RADIUS server type.

Brand	HPE
Model	FlexNetwork MSR Series
Category	Network Router
Language	English

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Questions and Answers:

HPE FlexNetwork MSR Series Specifications

Related product manuals