Table 28 Command levels and user privilege levels
Level | Privilege | Default set of commands | |
|
| Includes commands for network diagnosis and commands for accessing an external | |
0 | Visit | device. Configuration of commands at this level cannot survive a device restart. Upon | |
device restart, the commands at this level are restored to the default settings. | |||
|
| ||
|
| Commands at this level include ping, tracert, telnet and ssh2. | |
|
|
| |
|
| Includes commands for system maintenance and service fault diagnosis. Commands at | |
1 | Monitor | this level are not saved after being configured. After the device is restarted, the | |
commands at this level are restored to the default settings. | |||
|
| ||
|
| Commands at this level include debugging, terminal, refresh, and send. | |
|
|
| |
|
| Includes service configuration commands, including routing configuration commands | |
2 | System | and commands for configuring services at different network levels. | |
By default, commands at this level include all configuration commands except for those | |||
|
| ||
|
| at manage level. | |
|
|
| |
|
| Includes commands that influence the basic operation of the system and commands for | |
|
| configuring system support modules. | |
3 | Manage | By default, commands at this level involve the configuration commands of file system, | |
|
| FTP, TFTP, Xmodem download, user management, level setting, and parameter settings | |
|
| within a system, which are not defined by any protocols or RFCs. | |
|
|
|
Configuring a user privilege level
If the authentication mode on a user interface is scheme, configure a user privilege level for the user interface's users through the AAA module or directly on the user interface. For SSH users who use
If the authentication mode on a user interface is none or password, configure the user privilege level directly on the user interface.
For more information about user login authentication, see "Logging in to the CLI." For more information about AAA and SSH, see Access Control Configuration Guide.
Configuring a user privilege level for users through the AAA module
Step |
| Command | Remarks | |
1. | Enter system view. | N/A | ||
|
|
|
| |
2. | Enter user interface |
| ||
[ | N/A | |||
| view. | |||
|
| |||
|
|
| ||
|
|
|
| |
3. | Specify the scheme |
| By default, the authentication mode for | |
VTY users is scheme, and no | ||||
| authentication mode. | authentication is needed for console | ||
|
| |||
|
|
| login users. | |
|
|
|
| |
4. | Return to system view. | quit | N/A | |
|
|
|
|
133