HP A3100-16 v2 EI, A3100-16 v2 SI, A3100-16-PoE v2 EI, A3100-24 v2 EI, A3100-24-PoE v2 EI, A3100-8 DC EI, A3100-8 v2 SI, A3100-8-PoE v2 EI, JD311B, JD312B, JD313B, JD318B, JD320B, JG221A, JG222A, JG223A Configuring a user privilege level

Level	Privilege	Description
		Involves commands that influence the basic operation of the system and
		commands for configuring system support modules.
3	Manage	By default, commands at this level involve the configuration commands of file
3	Manage	system, FTP, TFTP, Xmodem download, user management, level setting, and

		parameter settings within a system (which are not defined by any protocols or
		RFCs).

Configuring a user privilege level

A user privilege level can be configured by using AAA authentication parameters or under a user interface.

Configure user privilege level by using AAA authentication parameters

If the user interface authentication mode is scheme, the user privilege level of users logging into the user interface is specified in AAA authentication configuration.

Follow these steps to configure the user privilege level by using AAA authentication parameters:

To do…		Use the command…	Remarks
Enter system view		system-view	—

		user-interface { first-num1
Enter user interface view		[ last-num1] { aux vty }	—
		first-num2 [ last-num2 ] }

			Required
Specify the scheme authentication		authentication-mode scheme	By default, the authentication
Specify the scheme authentication			mode for VTY users is password,
mode			mode for VTY users is password,
mode			and no authentication is needed
			and no authentication is needed
			for AUX login users.

Return to system view		quit	—

Configure the authentication mode		For more information about SSH,	Required if users use SSH to log in,
Configure the authentication mode		see the Security Configuration	and username and password are
for SSH users as password		see the Security Configuration	and username and password are
for SSH users as password		Guide.	needed at authentication
		Guide.	needed at authentication

		• Use the local-user command to	Use either approach
		create a local user and enter	Use either approach
		create a local user and enter	• For local authentication, if you
	Using local	local user view.	• For local authentication, if you
Configure the	Using local	• Use the level keyword in the	do not configure the user
Configure the	authentication	• Use the level keyword in the	do not configure the user
user privilege	authentication	authorization-attribute	privilege level, the user
user privilege		authorization-attribute	privilege level is 0.
level by using		command to configure the user	privilege level is 0.
level by using		command to configure the user	• For remote authentication, if
AAA		privilege level.	• For remote authentication, if
			you do not configure the user
authentication	Using remote		you do not configure the user
authentication			privilege level, the user
parameters
	authentication
		Configure the user privilege level	privilege level depends on the

	(RADIUS,
	(RADIUS,	on the authentication server	default configuration of the
	HWTACACS	on the authentication server	default configuration of the
	HWTACACS		authentication server.
	authentications)		authentication server.
	authentications)

Example of configuring a user privilege level by using AAA authentication parameters

#You are required to authenticate the users that Telnet to the switch through VTY 1, verify their username and password, and specify the user privilege level as 3.

HP Configuring a user privilege level

Models: A3100-16 v2 EI A3100-16 v2 SI A3100-16-PoE v2 EI A3100-24 v2 EI A3100-24-PoE v2 EI A3100-8 DC EI A3100-8 v2 SI A3100-8-PoE v2 EI JD311B JD312B JD313B JD318B JD320B JG221A JG222A JG223A