No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


An NE20E-S8 Fails in Command-specific Authorization

Publication Date:  2019-04-07 Views:  86 Downloads:  0

Issue Description

An NE20E-S8 V600R008 implements command-specific authorization, but that authorization fails in some commands.

 command-privilege level 1 view shell system-view
 command-privilege level 1 view system interface Serial3/1/1/5:0
 command-privilege level 1 view serial shutdown
 command-privilege level 1 view serial undo shutdown
 command-privilege level 1 view serial undo ppp mp
 command-privilege level 1 view serial ppp mp mp-group 3/1/1

serial interface view commands:
  arp-ping     ARP-ping
  ce-ping      Ce-ping tool
  close        Close slave file system
  display      Display current system information
  fastfeeling  Fastfeeling enable
  monitor      monitor
  mtrace       Trace route to multicast source
  ping         Send echo messages
  ppp          Specify PPP configuration information
  quit         Exit from current command view
  reset        Reset operation
  return       Exit to user view
  shutdown     Shutdown the specified interface
  trace        Trace route (switch) to host on Data Link Layer
  tracert      Trace route to host
  undo         Cancel current configuration

[N20EX6-BR-A-Serial3/1/1/5:0]ppp ?
Error: Unrecognized command found at '^' position.

Handling Process

Check that the interface 3/1/1/1:5 has the following configurations:

[N20EX6-BR-A-Serial3/1/1/5:0]dis this      
interface Serial3/1/1/5:0
 link-protocol ppp
 ppp mp Mp-group 3/1/1

It is confirmed that the interface is configured with the ppp mp Mp-group 3/1/1 command. This command cannot be configured again and therefore cannot be associated.

Root Cause

The interface has been configured with the ppp mp Mp-group 3/1/1 command.


Delete the ppp mp Mp-group 3/1/1 configuration from the interface before implementing command-specific authorization.


The authorization commands fail to be executed if the authorization command configuration already exists on the interface.