50
mdc-admin
mdc-operator
Parameters
name
role-name
: Specifies a user role name, a case-sensitive string of 1 to 63 characters. If you do
not specify a user role name, the command displays information about all user roles, including the
predefined user roles.
Examples
# Display information about user role
123
.
<Sysname> display role name 123
Role: 123
Description: new role
VLAN policy: deny
Permitted VLANs: 1 to 5, 7 to 8
Interface policy: deny
Permitted interfaces: FortyGigE1/0/1 to FortyGigE1/0/3, Vlan-interface1 to
Vlan-interface20
VPN instance policy: deny
Permitted VPN instances: vpn, vpn1, vpn2
-------------------------------------------------------------------
Rule Perm Type Scope Entity
-------------------------------------------------------------------
1 permit RWX feature-group abc
2 deny -W- feature ldap
3 permit command system ; radius sc *
4 permit R-- xml-element -
5 permit RW- oid 1.2.1
R:Read W:Write X:Execute
Table 7 Command output
Field Description
Role
User role name.
Predefined user role names:
•
network-admin.
•
network-operator.
•
mdc-admin.
•
mdc-operator.
•
level-
n
(where
n
represents an integer in the range of 0 to 15).
Description
User role description you have configured for easy identification.
VLAN policy
VLAN policy of the user role:
•
deny
—Denies access to all VLANs except permitted VLANs.
•
permit (default)
—Default VLAN policy, which enables the user
role to access all VLANs.
Permitted VLANs
VLANs accessible to the user role.
Interface policy
Interface policy of the user role:
•
deny
—Denies access to all interfaces except permitted
interfaces.
•
permit (default)
—Default interface policy, which enables the
