beautypg.com

Configuring user group attributes – H3C Technologies H3C S6300 Series Switches User Manual

Page 36

background image

21

Step Command

Remarks

9.

(Optional.) Configure
password control attributes

for the local user.

Set the password aging time:
password-control aging

aging-time

Set the minimum password

length:

password-control length length

Configure the password

composition policy:

password-control composition

type-number type-number
[ type-length type-length ]

Configure the password

complexity checking policy:
password-control complexity

{ same-character | user-name }

check

Configure the maximum login

attempts and the action to take if

there is a login failure:

password-control login-attempt
login-times [ exceed { lock |

lock-time time | unlock } ]

Optional.
By default, the local user uses
password control attributes of the

user group to which the local user

belongs.
Only device management users

support the password control
function.

10.

(Optional.) Assign the

local user to a user group. group group-name

By default, a local user belongs to the
default user group system.

Configuring user group attributes

User groups simplify local user configuration and management. A user group contains a group of local

users and has a set of local user attributes. You can configure local user attributes for a user group to
implement centralized user attributes management for the local users in the group. Local user attributes

that are manageable include authorization attributes.
By default, every new local user belongs to the default user group system and has all attributes of the

group. To assign a local user to a different user group, use the group command in local user view.
To configure user group attributes:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Create a user group and
enter user group view.

user-group group-name

By default, there is a
system-defined user group named
system, which is the default user

group.

3.

Configure authorization
attributes for the user group.

authorization-attribute { acl
acl-number | vlan vlan-id |

work-directory directory-name } *

By default, no authorization
attribute is configured for a user

group.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: