R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

111

112

113

114

115

116

117

118

119

120

112

must be a string of 1 to 63 characters that contains no blank space, for example, aabbcc. A password

in cipher text must be a string of 24 or 88 characters, for example, _(TT8F]Y\5SQ=^Q`MAF4<1!!.

Description

Use password to configure a password for a local user and specify whether to display the password in

cipher text or plain text.

Use undo password to delete the password of a local user.

If you configure the local-user password-display-mode cipher-force command, all existing local user

passwords are displayed in cipher text, regardless of the configuration of the password command. If you

also save the configuration and restart the firewall, all existing local user passwords are always

displayed in cipher text, no matter how you configure the local-user password-display-mode command

or the password command. The passwords configured after you restore the display mode to auto by

using the local-user password-display-mode auto command, however, are displayed as defined by the

password command.

With the cipher keyword specified, a password of up to 16 characters in plain text is encrypted into a

password of 24 characters in cipher text, and a password of 16 to 63 characters in plain text is encrypted

into a password of 88 characters in cipher text. For a password of 24 characters, if the system can

decrypt the password, the system treats it as a password in cipher text. Otherwise, the system treats it as

a password in plain text.

In FIPS mode, the firewall does not support this command. To set a password, use the password control

feature.

Related commands: display local-user and local-user password-display-mode.

Examples

# Set the password of local user user1 to 123456 and set the display mode to plain text.

<Sysname> system-view

[Sysname] local-user user1

[Sysname-luser-user1] password simple 123456

service-type

Syntax

service-type { dvpn | ftp | { ssh | telnet | terminal } * | portal | ppp | web }

undo service-type { dvpn | ftp | { ssh | telnet | terminal } * | portal | ppp | web }

View

Local user view

Default level

3: Manage level

Parameters

dvpn: Authorizes the user to use the DVPN service.

ftp: Authorizes the user to use the FTP service. The user can use the root directory of the FTP server by

default. This keyword is not available for the FIPS mode.

ssh: Authorizes the user to use the SSH service.

telnet: Authorizes the user to use the Telnet service. This keyword is not available for the FIPS mode.