Configuration procedure

To configure rules for a user role:

Step

Command

Remarks

1. Enter system view.

system-view

N/A

2. Enter user role view.

role name role-name

N/A

3. Configure a rule.

  • Configure a command rule: rule number { deny | permit } command command-string

  • Configure a feature rule:rule number { deny | permit } { execute | read | write } * feature [ feature-name ]

  • Configure a feature group rule:rule number { deny | permit } { execute | read | write } * feature-group feature-group-name

  • Configure an XML element rule:rule number { deny | permit } { execute | read | write } * xml-element [ xml-string ]

  • Configure an OID rule:rule number { deny | permit } { execute | read | write } * oid [ oid-string ]

By default, a user-defined user role does not have any rules or access to any commands, XML elements, or MIB nodes.

Repeat this step to add up to 256 rules to the user role.


[IMPORTANT: ]

IMPORTANT:

When you configure feature rules, you can specify only features available in the system. Enter feature names the same as the feature names are displayed, including the case.