Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Getting Started Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
919293949596979899100
95
User privilege level is 3, and only those commands can be used
whose level is equal or less than this.
Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE
super authentication-mode
Syntax
super authentication-mode { local | scheme } *
undo super authentication-mode
View
System view
Default level
2: System level
Parameters
local: Authenticates a user by using the local password set with the super password command. When no
password is set with the super password command, two results can occur: The privilege level switching
succeeds if the user is logged in through the console port. The switching fails if the user logs in through
a VTY user interface or enters an incorrect switch password.
scheme: AAA authentication. For more information about AAA, see Access Control Configuration
Guide.
local scheme: First local and then scheme, which means to authenticate a user by using the local
password first. If no password is set for the user logged in through the console port, the privilege level
switch succeeds. If no password is set for the user logged in through the VTY user interface, the AAA
authentication is performed.
scheme local: First scheme and then local, which means that AAA authentication is performed first. If the
AAA configuration is invalid (the domain parameters or authentication scheme are not configured) or the
server does not respond, the local password authentication is performed.
Description
Use super authentication-mode to set the authentication mode for user privilege level switch.
Use undo super authentication-mode to restore the default.
By default, the authentication mode for the user privilege level switch is local.
Related commands: super password.
Examples
# Set the authentication mode for the user privilege level switch to local.
<Sysname> system-view
[Sysname] super authentication-mode local
# Set the authentication mode for the user privilege level switch to scheme local.
<Sysname> system-view
[Sysname] super authentication-mode scheme local