HP VPN Firewall Appliances Getting Started Command Reference
106
In the local switching mode, if the authentication mode of the user interface is scheme, the user is locked
for 15 minutes after five consecutive incorrect password attempts. Within the lock interval, the user cannot
switch to a higher privilege level. The lock timer restarts when the user makes a new password attempt
within the lock interval.
Examples
# Switch to user privilege level 2 from user privilege level 3.
<Sysname> super 2
User privilege level is 2, and only those commands can be used
whose level is equal or less than this.
Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE
# Switch back to user privilege level 3. (Suppose that the switching password is 123 . If no password is set,
users cannot switch to user privilege level 3.)
<Sysname> super 3
Please input the password to change the privilege level, press CTRL_C to abort.
Password:
User privilege level is 3, and only those commands can be used
whose level is equal or less than this.
Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE
Related commands
• super password
• super authentication-mode
super authentication-mode
Use super authentication-mode to set the authentication mode for user privilege level switching.
Use undo super authentication-mode to restore the default.
Syntax
super authentication-mode { local | scheme } *
undo super authentication-mode
Default
The authentication mode for the user privilege level switching is local.
Views
System view
Default command level
2: System level
Parameters
local: Uses the local password set with the super password command for user privilege level switching
authentication. If no password is set with the command, the system allows a console user (a user who
uses the console port or the AUX port acting as the console port) to switch the privilege level without
authentication, but denies the switching requests of VTY users.
scheme: Uses AAA for user privilege level switching authentication. For more information about AAA,
see Access Control Configuration Guide.