5-5
When both the super password authentication and the HWTACACS authentication are specified, the
device adopts the preferred authentication mode first. If the preferred authentication mode cannot be
implemented (for example, the super password is not configured or the HWTACACS authentication
server is unreachable), the backup authentication mode is adopted.
Adopting super password authentication for user level switching
With the super password set, you can pass the super password authentication successfully only when
you provide the super password as prompted. If no super password is set, the system prompts
“%Password is not set” when you attempt to switch to a higher user level. In this case, you cannot pass
the super password authentication.
For example, after the administrator configures the
super password level
3
simple
123 command,
when users of level 0 through level 2 want to switch to user level 3, they need to input super password
123.
The following table lists the operations to configure super password authentication for user level
switching, which can only be performed by level-3 users (administrators).
Follow these steps to set a password for use level switching:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Set the super password for
user level switching
super password
[
level level
]
{
cipher
|
simple
}
password
Required
The configuration will take
effect on all user interfaces.
By default, the super password
is not set.
The super password is for level switching only and is different from the login password..
Adopting HWTACACS authentication for user level switching
To implement HWTACACS authentication for user level switching, a level-3 user must perform the
commands listed in the following table to configure the HWTACACS authentication scheme used for
low-to-high user level switching. With HWTACACS authentication enabled, you can pass the
HWTACACS authentication successfully only after you provide the right user name and the
corresponding password as prompted. Note that if you have passed the HWTACACS authentication
when logging in to the switch, only the password is required.
The following table lists the operations to configure HWTACACS authentication for user level switching,
which can only be performed by Level-3 users.
Follow these steps to set the HWTACACS authentication scheme for user level switching:
Содержание Switch 4800G PWR 24-Port
Страница 165: ...1 8 4 mac address es found on port GigabitEthernet1 0 2 ...
Страница 214: ...ii Displaying and Maintaining System Guard 4 1 ...
Страница 445: ...ii ...
Страница 727: ...i Table of Contents Appendix A Acronyms A 1 ...
Страница 730: ...A 3 VOD Video On Demand W WRR Weighted Round Robin X XID eXchange Identification XRN eXpandable Resilient Networking ...