H3C Technologies H3C SecPath F1000-E User Manual
Page 209
15
Example of configuring user privilege level under a user interface
•
Perform no authentication to the users that telnet to the device, and specify the user privilege level
as 1. (No authentication to users brings potential security problem. Therefore, you are
recommended to use it in a secure network environment.)
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode none
[Sysname-ui-vty0-4] user privilege level 1
By default, when users telnet to the device, they can only use the following commands after passing the
authentication:
User view commands:
display Display current system information
ping Ping function
quit Exit from current command view
rsh Establish one RSH connection
ssh2 Establish a secure shell client connection
super Set the current user priority level
telnet Establish one TELNET connection
tftp Open TFTP connection
tracert Trace route function
When you set the user privilege level under the user interface, users can log in to the device through
Telnet without any authentication and use the following commands:
User view commands:
debugging Enable system debugging functions
dialer Dialer disconnect
display Display current system information
ping Ping function
quit Exit from current command view
refresh Do soft reset
reset Reset operation
rsh Establish one RSH connection
screen-length Specify the lines displayed on one screen
send Send information to other user terminal interface
ssh2 Establish a secure shell client connection
super Set the current user priority level
telnet Establish one TELNET connection
terminal Set the terminal line characteristics
tftp Open TFTP connection
tracert Trace route function
undo Cancel current setting
•
Authenticate the users logging in to the device through Telnet, verify their password, and specify the
user privilege level as 2.
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode password