[Switch] display ?
acl
adjacent-table
alarm
archive
arp
bfd
bgp
boot-loader
---- More ----
# Verify that you cannot use the write or execute commands of any feature.
<Switch> debugging role all
Permission denied.
<Switch> ping 192.168.1.58
Permission denied.
RBAC configuration example for RADIUS
authentication users
Network requirements
The switch in
including the Telnet user at 192.168.1.58. This Telnet user uses the username hello@bbb and is assigned
the user role role2.
This user role has the following permissions:
Performs all the commands in ISP view.
•
Performs read and write commands of the features arp and radius.
•
•
Has no access to read commands of the feature acl.
Configures VLANs 1 to 20 and interfaces GigabitEthernet 3/0/1 to GigabitEthernet 3/0/24.
•
The switch and the FreeRADIUS server use the shared key expert and authentication port 1812. The switch
delivers usernames with their domain names to the server.
Figure 4 Network diagram
Specify ACL configuration information
Display adjacent information
Display alarm information
Display archive information
ARP module
BFD module
Border Gateway Protocol(BGP)
Display boot-loader
Figure 4
uses the FreeRADIUS server at 10.1.1.1/24 to provide AAA service for login users,
27