beautypg.com

29 configuring device management users, Configuring device management users in uam, Configuring device management users – H3C Technologies H3C Intelligent Management Center User Manual

Page 560: Accessing the device management use list page

background image

542

29 Configuring device management users

Device management users, also called device administrators or device operators, are users who can log

in to and manage network devices.
An authentication process occurs when a device management user attempts to log in to a device.
Typically the device performs authentication with the locally stored username and password. With UAM

deployed to the network, the authentication process does not necessarily occur on the device. Instead,

UAM can use the RADIUS service to authenticate the device management user. Operators can manage

device management users in UAM to reduce management cost and enhance network security.
UAM can authenticate device management users that use the following login methods:

Telnet

SSH

FTP

Terminal

To authenticate device management users in UAM, complete the following configurations:

1.

Add device management users to UAM and configuring the users.

2.

Configure the related devices as access devices in UAM.

3.

Configure AAA authentication on the devices.

You can audit the login behaviors of the device management users by using the UAM authentication logs
of device management users.

Configuring device management users in UAM

UAM allows you to manage device management users in the Access User module.

Accessing the device management use list page

1.

Click the User tab.

2.

Select Access User > Device User from the navigation tree.
The list includes all device users.
Device management user list contents

{

Account Name—Login name of the device management user. Click the name of a device
management user to view its details. For more information, see "

Viewing device management

user details

."

{

Service Type—Login method of a device management user. Valid methods include Telnet, SSH,
FTP, and Terminal.

{

Created on—Date when the device management user was created, in the format of
YYYY-MM-DD.

{

LDAP Policy—Name of the LDAP synchronization policy bound to the device management user.
The field is empty if the device management user is not bound to any LDAP synchronization

See also other documents in the category H3C Technologies Safety: