R211x-HP Flexfabric 11900 Fundamentals Command Reference
53
Field Description
VLAN policy
VLAN policy of the user role:
• deny—Denies access to any VLAN except permitted VLANs.
• permit (default)—Default VLAN policy, which enables the user role
to access any VLAN.
Permitted VLANs VLANs accessible to the user role.
Interface policy
Interface policy of the user role:
• deny—Denies access to any interface except permitted interfaces.
• permit (default)—Default interface policy, which enables the user
role to access any interface.
Permitted interfaces Interfaces accessible to the user role.
VPN instance policy
VPN instance policy of the user role:
• deny—Denies access to any VPN except permitted VPNs.
• permit (default)—Default VPN instance policy, which enables the
user role to access any VPN instance.
Permitted VPN instances VPNs accessible to the user role.
Rule
User role rule number.
A user role rule specifies the permission to access a command or a set
of commands. Predefined user role rules are identified by sys-n, where
n represents an integer.
Perm
Access to the command:
• permit—User role has access to the command.
• deny—User role has no access to the command.
Type
Command type:
• R—Read-only.
• W—Write.
• X—Execute.
Scope
Rule control scope:
• command—Controls access to the command or commands, as
specified in the Entity field.
• feature—Controls access to the commands of the feature, as
specified in the Entity field.
• feature-group—Controls access to the commands of the features in
the feature group, as specified in the Entity field.
Entity
Command string, feature name, or feature group specified in the user
role rule:
• An en dash (–) represents any feature.
• An asterisk (*) represents zero or more characters.
Related commands
role