H3C Technologies H3C S7500E Series Switches User Manual

1-22

Authentication

mode

Meaning

Description

local scheme

Performs the local

password

authentication first

and then the

remote AAA

authentication

The switch authenticates a user by using the local password first,

and if no password for privilege level switch is set, for the user

logged in from the console port, the privilege level is switched

directly; for the user logged in from any of the AUX, TTY, or VTY

user interfaces, the AAA authentication is performed.

scheme local

Performs remote

AAA

authentication first

and then the local

password

authentication

AAA authentication is performed first, and if the remote

HWTACACS or RADIUS server does not respond or AAA

configuration on the switch is invalid, the local password

authentication is performed.

Follow these steps to set the authentication mode for user privilege level switch:

To do…

Use the command…

Remarks

Enter system view

system-view

—

Set the authentication mode for

user privilege level switch

super authentication-mode

{ local | scheme } *

Optional

local by default.

Configure the password for user

privilege level switch

super password [ level

user-level ] { simple | cipher }

password

Required if the authentication

mode is set to local (that is,

specify the local keyword when

setting the authentication mode)

By default, no privilege level switch

password is configured.