Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Getting Started Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
111112113114115116117118119120
114
If local-only authentication is used, a console user interface user (a user logged in through the console
port) can switch to a higher privilege level even if the privilege level has not been assigned a password.
If you specify the simple keyword, the password is saved in the configuration file in plain text, which is
easy to be stolen. If you specify the cipher keyword, the password is saved in the configuration file in
cipher text, which is safer.
Switching to a higher user privilege level
Before you switch to a higher user privilege level, obtain the required authentication data as described
in Table 25.
T
he privilege level switching fails after three consecutive unsuccessful password attempts.
To switch the user privilege level, perform the following task in user view:
Task Command Remarks
Switch the user
privilege level.
super [ level ]
When logging in to the device, a user has a user
privilege level, which depends on user interface or
authentication user level.
Table 25 Information required for user privilege level switching
User interface
authentication
mode
User privilege level
switching
authentication
mode
Information required for
the first authentication
mode
Information required for the
second authentication mode
none/password
local
Password configured on the
device with the super
password command for the
privilege level
N/A
local scheme
Password configured on the
device with the super
password command for the
privilege level
Username and password
configured on the AAA server for
the privilege level
scheme
Username and password for
the privilege level
N/A
scheme local
Username and password for
the privilege level
Local user privilege level
switching password
scheme
local
Password configured on the
device with the super
password command for the
privilege level
N/A
local scheme
Password configured on the
device with the super
password command for the
privilege level
Password for privilege level
switching (configured on the
AAA server). The system uses the
username used for logging in as
the privilege level switching
username.