3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

36 CHAPTER 4: AAA AND RADIUS/HWTACACS PROTOCOL CONFIGURATION

Creating a local user

A local user is a group of users set on NAS (a security gateway). The username is

the unique identifier of a user. A user requesting network service can pass local

authentication as long as its information has been added to the local user

database of NAS.

Perform the following configuration in system view

By default, there is no local user in the system.

Setting attributes of a local user

The attributes of a local user include user password display mode, user password,

user state, and the type of service that is authorized to the user.

Perform the following configuration in system view.

Where, auto means that the password display mode will be the one specified by

the user at the time of configuring password (see the password command in the

following table for reference), and cipher-force means that the password display

mode of all the accessing users must be in cipher text.

Perform the following configurations in local user view.

Tabl e 20 Create/delete a local user and the relevant properties

Operation Command

Add a local user. local-user user-name

Delete a local user or the service type of the

local user.

undo local-user user-name [ service-type |

level ]

Delete all local users or all local users of a

specific service type.

undo local-user all [ service-type { ftp |

ppp | ssh | telnet | terminal } ]

Tabl e 21 Set the password display mode for local users

Operation Command

Set the password display mode for all local

users.

local-user password-display-mode {

cipher-force | auto }

Cancel the password display mode for local

users.

undo local-user password-display-mode

Tabl e 22 Set/remove the attributes concerned with a specified user

Operation Command

Set a user password. password { simple | cipher } password

Remove the user password. undo password

Set the user state. state { active | block }

Remove the user state setting. undo state { active | block }

Set a service type available for the user. service-type { telnet | ssh | terminal | pad }

Cancel the service type available for the user.

undo service-type { telnet | ssh | terminal |

pad }

Set a priority level for the user. level level

Restore the default priority level. undo level