No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Basic Configuration

S1720, S2700, S5700, and S6720 V200R011C10

This document describes methods to use command line interface and to log in to the device, file operations, and system startup configurations.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring a User Level for a VTY User Interface

Configuring a User Level for a VTY User Interface

Context

  • You can configure different user levels to control access rights of different users and improve device security.
  • There are 16 user levels numbered from 0 to 15, in ascending order of priority.
  • User levels map command levels. A user can use only the commands of the corresponding level or lower. Table 6-6 describes mappings between user levels and command levels.
    Table 6-6  Mappings between user levels and command levels

    User Level

    Command Level

    Name

    Description

    0

    0

    Visit level

    Commands of this level include commands used for network diagnosis such as ping and tracert commands, and remote access commands such as Telnet.

    1

    0 and 1

    Monitoring level

    Commands of this level are used for system maintenance, including display commands.

    NOTE:

    Some display commands are not available at this level. For example, the display current-configuration and display saved-configuration commands are level-3 management commands. For details about command levels, see the S1720, S2700, S5700, and S6720 V200R011C10 Command Reference.

    2

    0, 1, and 2

    Configuration level

    Commands of this level are used to configure network services provided directly to users, such as routing and commands of all network layers.

    3 to 15

    0, 1, 2, and 3

    Management level

    Commands of this level are used to control basic system operations and provide support for services, including file system, FTP, TFTP download, user management, command level setting, and debugging commands for fault diagnosis.

Procedure

  • If a user uses password authentication mode, the user level is configured in the AAA view.

    1. Run system-view

      The system view is displayed.

    2. Run aaa

      The AAA view is displayed.

    3. Run local-user user-name privilege level level

      The local user level is configured.

    4. Run quit

      Return to the system view.

  • If a user uses RSA, DSA, or ECC authentication mode, the user level is determined by the user level of the VTY interface to which the user logs in.

    1. Run system-view

      The system view is displayed.

    2. Run user-interface vty first-ui-number [ last-ui-number ]

      The VTY user interface view is displayed.

    3. Run user privilege level level

      The user level is configured for the VTY user interface.

      By default, the user level of a VTY user interface is 0.

    NOTE:
    • If an SSH user uses all authentication mode and an AAA user with the same name as the SSH user exists, user levels may be different in password, RSA, DSA, and ECC authentication modes. Configure the user level based on actual requirements.
    • If the user level configured for a user interface conflicts with that configured for a user, the user level configured for the user takes precedence.

Translation
Download
Updated: 2019-10-21

Document ID: EDOC1000178166

Views: 258329

Downloads: 1949

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next