Manualshelf

Concept Guide

ManualsBrandsDell ManualsAccess PlatformsNetworking S3100 Series
821822823824825826827828829830
DellEMC(conf)#show role mode configure interface
Role access: netadmin, secadmin, sysadmin
Example: Verify that the Security Administrator Can Access Interface Mode
The following example shows that the secadmin role can now access Interface mode (highlighted in bold).
Role Inheritance Modes
netoperator
netadmin Exec Config Interface Router IP RouteMap Protocol MAC
secadmin Exec Config Interface Line
sysadmin Exec Config Interface Line Router IP RouteMap Protocol MAC
Example: Remove Security Administrator Access to Line Mode.
The following example removes the secadmin access to LINE mode and then veries that the security administrator can no longer
access LINE mode, using the show role mode configure line command in EXEC Privilege mode.
DellEMC(conf)#role configure deleterole secadmin ?
LINE Initial keywords of the command to modify
DellEMC(conf)#role configure deleterole secadmin line
DellEMC(conf)#do show role mode ?
configure Global configuration mode
exec Exec Mode
interface Interface configuration mode
line Line Configuration mode
route-map Route map configuration mode
router Router configuration mode
DellEMC(conf)#do show role mode configure line
Role access:sysadmin
Example: Grant and Remove Security Administrator Access to Congure Protocols
By default, the system dened role, secadmin, is not allowed to congure protocols. The following example rst grants the secadmin
role to congure protocols and then removes access to congure protocols.
DellEMC(conf)#role configure addrole secadmin protocol
DellEMC(conf)#role configure deleterole secadmin protocol
Example: Resets Only the Security Administrator role to its original setting.
The following example resets only the secadmin role to its original setting.
DellEMC(conf)#no role configure addrole secadmin protocol
Example: Reset System-Dened Roles and Roles that Inherit Permissions
In the following example the command protocol permissions are reset to their original setting or one or more of the system-dened roles
and any roles that inherited permissions from them.
DellEMC(conf)#role configure reset protocol
Adding and Deleting Users from a Role
To create a user name that is authenticated based on a user role, use the username name password encryption-type password role
role-name command in CONFIGURATION mode.
Example
The following example creates a user name that is authenticated based on a user role.
DellEMC(conf)# username john password 0 password role secadmin
826
Security