HP VPN Firewall Appliances Access Control Configuration Guide
201
Ste
p
Command
Remarks
3. Configure a password for the
local user.
password [ [ hash ] { cipher |
simple } password ]
Optional.
If you do not configure any
password for a local user, the local
user does not need to provide any
password during authentication,
and can pass authentication after
entering the correct local user
name and passing attribute
checks. To achieve high security,
configure a password for each
local user.
In FIPS mode, this command is not
available, and you must use the
password-control command to set
a password for a local user
4. Assign service types for the
local user.
service-type { dvpn | ftp | { ssh |
telnet | terminal } * | portal | ppp
| web }
By default, no service is authorized
to a local user.
Support for dvpn depends on the
device model. For more
information, see Access Control
Command Reference.
The ftp and telnet keywords are not
available for FIPS mode.
5. Place the local user to the
active or blocked state.
state { active | block }
Optional.
By default, a created local user is
in active state and can request
network services.
6. Set the maximum number of
concurrent users of the local
user account.
access-limit max-user-number
Optional.
By default, there is no limit to the
maximum number of concurrent
users of a local user account.
The limit is effective only for local
accounting, and is not effective for
FTP users.