4000 Router Series Fundamentals Command Reference

Use undo role default-role enable to restore the default.

Syntax

role default-role enable

undo role default-role enable

Default

The default user role function is disabled. AAA users that do not have a user role cannot log in to the

device.

Views

System view

Predefined user roles

network-admin

Usage guidelines

An AAA authentication user must have at least one user role to log in to the device. The default user role

function assigns the network-operator user role to a local or remote AAA authenticated user if the AAA

server has not authorized the user to use any user roles. Without the function, AAA authenticated users

cannot access the system if they have no user role authorization.

You can configure the default user role function to enable an AAA authenticated user that has not been

assigned any user role to log in with the default user role network-operator.

If AAA users have been assigned user roles, they log in with the user roles.

Examples

# Enable the default user role feature.

<Sysname> system-view

[Sysname] role default-role enable

Related commands

role

role feature-group

Use role feature-group to create a user role feature group and enter user role feature group view.

Use undo role feature-group to delete a user role feature group.

Syntax

role feature-group name feature-group-name

undo role feature-group name feature-group-name

Default

Two user role feature groups, L2 and L3, are created.

Views

System view

Predefined user roles

network-admin