Assigning User Roles To Local Aaa Authentication Users; Assigning User Roles To Non-Aaa Authentication Users On User Lines - HP 10500 Series Configuration Manual

Hide thumbs Also See for 10500 Series:

Security configuration manual (596 pages)

Configuration manual (512 pages)

Specifications (42 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

Table of Contents

Assigning user roles to local AAA authentication users

Configure user roles for local AAA authentication users in their local user accounts. Every local user has

a default user role. If this default user role is not suitable, delete it.

If a local user is the only one with the security-audit user role, this local user cannot be deleted.

The security-audit user role is mutually exclusive with other user roles.

When you assign the security-audit user role to a local user, the system requests confirmation to

•

delete all the other user roles of the local user first.

When you assign the other user roles to a local user who has been assigned the security-audit user

•

role, the system requests confirmation to delete the security-audit user role for the local user first.

To assign a user role to a local user:

Step

Enter system view.

Create a local user and

enter local user view.

Authorize the user to have a

user role.

Assigning user roles to non-AAA authentication users on user

lines

Specify user roles for the following two types of login users on the user lines:

Users who use password authentication or no authentication.

•

SSH clients that use publickey or password-publickey authentication. User roles assigned to these

SSH clients are specified in their respective device management user accounts.

For more information about user lines, see "Login overview" and "Logging in to the CLI." For more

information about SSH, see Security Configuration Guide.

To assign a user role to non-AAA authentication users on a user line:

Step

Enter system view.

Command

system-view

local-user user-name class

{ manage | network }

authorization-attribute user-role

role-name

Command

system-view

Remarks

N/A

Repeat this step to assign the user to up

to 64 user roles.

By default, local users created by a

network-admin or level-15 user on the

default MDC are assigned the

network-operator user role, and local

users created by an mdc-admin or

level-15 user on a non-default MDC

are assigned the mdc-operator user

role.

Remarks

N/A

Table of Contents

Show Quick Links

Quick Links:
Using the Cli

Hide quick links:

Table of Contents

Assigning User Roles To Local Aaa Authentication Users; Assigning User Roles To Non-Aaa Authentication Users On User Lines - HP 10500 Series Configuration Manual

Assigning user roles to local AAA authentication users

Hide quick links:

Troubleshooting

Related Manuals for HP 10500 Series

Related Content for HP 10500 Series

Table of Contents