Assigning user roles to non-AAA authentication users on user lines
Specify user roles for the following two types of login users on the user lines:
Users that use password authentication or no authentication.
SSH clients that use publickey or password-publickey authentication. User roles assigned to these SSH clients are specified in their respective device management user accounts.
For more information about user lines, see "Login overview" and "Configuring CLI login." For more information about SSH, see Security Configuration Guide.
To assign a user role to non-AAA authentication users on a user line:
Step | Command | Remarks |
---|---|---|
1. Enter system view. | system-view | N/A |
2. Enter user line view or user line class view. |
| For information about the priority order and application scope of the settings in user line view and user line class view, see "Configuring CLI login." |
3. Specify a user role on the user line. | user-role role-name | Repeat this step to specify a maximum of 64 user roles on a user line. By default, the network-admin user role is specified on the AUX user line, and the network-operator user role is specified on any other user line. The device cannot assign the security-audit user role to non-AAA authentication users. |