Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
171172173174175176177178179180
168
Step Command Remarks
9. Configure the binding
attributes for the local user.
bind-attribute { call-number
call-number [ : subcall-number ]
Optional.
By default, no binding attribute is
configured for a local user.
This command applies only to PPP
users.
10. Configure the authorization
attributes for the local user.
authorization-attribute { acl
acl-number | callback-number
callback-number | idle-cut minute |
level level | user-profile
profile-name | user-role { guest |
guest-manager | security-audit } |
vlan vlan-id | work-directory
directory-name } *
Optional.
By default, no authorization
attribute is configured for a local
user.
For PPP users, only acl,
callback-number, idle-cut, and
user-profile are supported.
For portal users, only acl, idle-cut,
user-profile, and vlan are
supported.
For SSH, terminal, and Web
users, only level is supported.
For FTP users, only level and
work-directory are supported.
For Telnet users, only level and
user-role is supported.
For other types of local users, no
binding attribute is supported.
11. Set the validity time of the
local user.
validity-date time
Optional.
Not set by default.
12. Set the expiration time of the
local user.
expiration-date time
Optional.
Not set by default.
13. Assign the local user to a user
group.
group group-name
Optional.
By default, a local user belongs to
the default user group system.
Configuring user group attributes
User groups simplify local user configuration and management. A user group comprises a group of local
users and has a set of local user attributes. You can configure local user attributes for a user group to
implement centralized user attributes management for the local users in the group. Configurable user
attributes include password control attributes and authorization attributes.
By default, every newly added local user belongs to the system default user group system and bears all
attributes of the group. To change the user group to which a local user belongs, use the user-group
command in local user view.
To configure attributes for a user group:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A