Manualshelf

R2511-HP MSR Router Series Security Command Reference(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router
61626364656667686970
46
Usage guidelines
Binding attributes are checked upon authentication of a local user. If the binding attributes of a local user
do not match the configured ones, the user fails checking and authentication.
Binding attribute checking does not take the service types of users into account. A configured binding
attribute is effective for all types of users. Configure binding attributes for different types of local users
with caution. For example, an IP address binding applies only to 802.1X authentication that supports IP
address upload. If the authentication method such as MAC authentication does not support IP address
upload, do not configure an IP address binding for the authentication method. Otherwise, local
authentication fails.
Examples
# Configure the bound IP of local user abc as 3.3.3.3.
<Sysname> system-view
[Sysname] local-user abc
[Sysname-luser-abc] bind-attribute ip 3.3.3.3
display local-user
Use display local-user to display configuration and statistics information about local users.
Syntax
In non-FIPS mode:
display local-user [ idle-cut { disable | enable } | service-type { dvpn | ftp | lan-access | pad | portal
| ppp | ssh | telnet | terminal | web } | state { active | block } | user-name user-name | vlan vlan-id ]
[ | { begin | exclude | include } regular-expression ]
In FIPS mode:
display local-user [ idle-cut { disable | enable } | service-type { lan-access | portal | ssh | terminal |
web } | state { active | block } | user-name user-name | vlan vlan-id ] [ | { begin | exclude | include }
regular-expression ]
Views
Any view
Default command level
1: Monitor level
Parameters
idle-cut { disable | enable }: Specifies local users with the idle cut function disabled or enabled.
service-type: Specifies the local users who use a specified type of service.
dvpn: DVPN tunnel users.
ftp: FTP users.
lan-access: Users accessing the network through Ethernet, such as 802.1X users.
pad: X.25 PAD users.
portal: Portal users.
ppp: PPP users.
ssh: SSH users.
telnet: Telnet users.