Step |
| Command | Remarks |
5. | Configure the | For more information, see System | This task is required only for SSH users |
| authentication mode | who are required to provide their | |
| Management and Maintenance | ||
| for SSH users as | usernames and passwords for | |
| Configuration Guide. | ||
| password. | authentication. | |
|
| ||
|
|
|
|
|
| • To use local authentication: | User either approach. |
|
|
|
6.Configure the user privilege level through the AAA module.
a.Use the
b.Use the level keyword in the
•To use remote authentication (RADIUS, HWTACACS, or LDAP): Configure the user privilege level on the authentication server.
For local authentication, if you do not configure the user privilege level, the user privilege level is 0.
For remote authentication, if you do not configure the user privilege level, the user privilege level depends on the default configuration of the authentication server.
For more information about the
For example:
# Configure the device to use local authentication for Telnet users on VTY 1.
<Sysname>
When users Telnet to the device through VTY 1, they must enter username test and password 123. After passing the authentication, the users can only use
# Assign commands of levels 0 through 3 to the users.
Configuring the user privilege level directly on a user interface
To configure the user privilege level directly on a user interface that uses the scheme authentication mode:
Step |
| Command | Remarks |
1. | Configure the authentication | For more information, see System | Required only for SSH users who |
| type for SSH users as | Management and Maintenance | |
| use | ||
| publickey. | Configuration Guide. | |
|
| ||
|
|
|
|
2. | Enter system view. | N/A | |
|
|
|
|
3. | Enter user interface view. |
| |
[ | N/A | ||
|
| [ |
|
|
|
|
|
4. | Enable the scheme |
| By default, the authentication |
mode for VTY users is scheme, and | |||
| authentication mode. | no authentication is needed for | |
|
|
console users.
134