NOTE
l Different user access levels are associated with different command levels. A user at a certain
access level can use only commands that have a level lower than or equal to the command
level of the user. This ensures the security of the device to some extent.
l If the configured command level of the user interface conflicts with the operation rights of
the username, the operation rights of the username take precedence.
l Configure the user authentication mode of the VTY user interface.
The system provides non-authentication and AAA authentication for users to select.
– Configuring Non-Authentication
1. Run:
system-view
The system view is displayed.
2. Run:
user-interface vty first-ui-number [ last-ui-number ]
The VTY user interface view is displayed.
3. Run:
authentication-mode none
The authentication mode is set to non-authentication.
– Configuring AAA Authentication
When the authentication mode of the VTY user interface is set to AAA authentication,
the access type of the local user must be specified.
1. Run:
system-view
The system view is displayed.
2. Run:
aaa
The AAA view is displayed.
3. Run:
local-user user-name password { simple | cipher } password
A username and password for the local user are created.
4. Run:
local-user user-name service-type ssh
The access type of the local user is set to SSH.
5. Run:
quit
Exit from the AAA view.
6. Run:
user-interface vty first-ui-number [ last-ui-number ]
The VTY user interface view is displayed.
7. Run:
authentication-mode aaa
The authentication mode is set to AAA authentication.
----End
Huawei AR1200 Series Enterprise Routers
Configuration Guide - Basic Configuration 5 Configuring User Login
Issue 04 (2012-05-15) Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
86
To Next Page
Loading...
