HP VPN Firewall Appliances Getting Started Command Reference
107
local scheme: Uses the local password, if configured, for user privilege level switching authentication. If
the password is not configured, the system allows a console user to switch the privilege level but uses
AAA to authenticate other types of login users.
scheme local: Uses AAA for user privilege level switching authentication. If the AAA configuration is
incomplete or invalid or the server does not respond, the system uses the local password for the
authentication.
Examples
# Set the authentication mode for user privilege level switching to local.
<Sysname> system-view
[Sysname] super authentication-mode local
# Set the authentication mode for user privilege level switching to scheme local.
<Sysname> system-view
[Sysname] super authentication-mode scheme local
Related commands
super password
super password
Use super password to set the password used to switch from the current user privilege level to a higher
one.
Use undo super password to restore the default.
Syntax
super password [ level user-level ] { cipher | simple } password
undo super password [ level user-level ]
Default
No password is set for switching to a higher privilege level.
Views
System view
Default command level
2: System level
Parameters
level user-level: User privilege level, which ranges from 1 to 3 and defaults to 3.
cipher: Sets a ciphertext password.
simple: Sets a plaintext password.
password: Specifies the password string. This argument is case sensitive. If simple is specified, it must be
a string of 1 to 16 characters. If cipher is specified, it must be a ciphertext string of 1 to 53 characters.
Under FIPS, a password must be a combination of uppercase letters, lowercase letters, digits, and special
characters, and must be at least eight characters long.
Usage guidelines
For security purposes, all keys, including keys configured in plain text, are saved in cipher text.