Manualshelf

HP MSR2000/3000/4000 Router Series Fundamentals Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router
21222324252627282930
20
Ste
p
Command
Remarks
3. (Optional.) Configure a
description for the user
role.
description text
By default, a user role has no
description.
Configuring user role rules
Configure command, feature, and feature group rules to permit or deny the access of a user role to
specific commands.
You can configure up to 256 rules for a user role, but the total number of user role rules in the system
cannot exceed 1024.
If two rules of a user role conflict, the one with a higher rule number has priority.
Any rule modification, addition, or removal for a user role takes effect only on users that are logged in
with the user role after the change.
To configure rules for a user role:
Ste
p
Command
Remarks
1. Enter system view.
system-view N/A
2. Enter user role view.
role name role-name N/A
3. Configure a rule.
Configure a command rule:
rule number { deny | permit }
command command-string
Configure a feature rule:
rule number { deny | permit }
{ execute | read | write } * feature
[ feature-name ]
Configure a feature group rule:
rule number { deny | permit }
{ execute | read | write } *
feature-group feature-group-name
Configure a Web menu rule:
rule number { deny | permit }
{ execute | read | write } * web-menu
[ web-string ]
Configure an XML element rule:
rule number { deny | permit }
{ execute | read | write } *
xml-element [ xml-string ]
Configure at least one command.
By default, a user-defined user role
has no rules or access to any
command.
Repeat this step to add up to 256
rules to the user role.
Web menus are not supported in this
release.
IMPORTANT:
When you configure feature rules,
you can specify only features
available in the system and must
enter feature names exactly the same
as they are displayed, including the
case.
Configuring feature groups
Use feature groups to bulk assign command access permissions to sets of features. In addition to the
predefined feature groups, you can create up to 64 custom feature groups and assign a feature to
multiple feature groups.
To configure a feature group: