R211x-HP Flexfabric 11900 Fundamentals Command Reference
65
# Verify that you can enter VPN1 view.
<Sysname> system-view
[Sysname] ip vpn-instance vpn1
[Sysname-vpn-instance-vpn1]
# Verify that you can assign the primary accounting server at 10.110.1.2 to the VPN in the
RADIUS scheme radius1.
<Sysname> system-view
[Sysname] radius scheme radius1
[Sysname-radius-radius1] primary accounting 10.110.1.2 vpn-instance vpn1
# Verify that you cannot create the VPN vpn2 or enter its view.
<Sysname> system-view
[Sysname] ip vpn-instance vpn2
Permission denied.
Related commands
• display role
• role
• vpn-instance policy deny
role
Use role to create a user role and enter user role view. If the user role has been created, you directly enter
the user role view.
Use undo role to delete a user role.
Syntax
role name role-name
undo role name role-name
Default
The system has 21 predefined user roles: network-admin, network-operator, mdc-admin, mdc-operator,
level-n (where n represents an integer in the range of 0 to 15), and security-audit.
Views
System view
Predefined user roles
network-admin
mdc-admin
Parameters
name role-name: Specifies a username. The role-name argument is a case-sensitive string of 1 to 63
characters.
Usage guidelines
You can create up to 64 user roles in addition to the predefined user roles.
To change the permissions assigned to a user role, you must first enter its view.