User Access Control
Setting up User IDs
Defining a User's Access Level
Validating a User's Configuration
Enabling or Disabling a User
Locking Accounts
102
G8264 Application Guide for ENOS 8.4
The administrator can choose the number of days allowed before each password
expires. When a strong password expires, the user is allowed to log in one last time
(last time) to change the password. A warning provides advance notice for users to
change the password.
The end‐user access control commands allow you to configure end‐user accounts.
Up to 20 user IDs can be configured. Use the following commands to define any
user name and set the user password at the resulting prompts:
RS G8264(config)# access user 1 name <1‐64 characters>
RS G8264(config)# access user 1 password
Changing user1 password; validation required:
Enter current admin password: <current administrator password>
Enter new user1 password: <new user password>
Reenter new user1 password: <new user password>
New user1 password accepted.
The end user is by default assigned to the user access level (also known as class of
service, or COS). COS for all user accounts have global access to all resources
except for User COS, which has access to view only resources that the user owns.
For more information, see Table 8 on page
To change the user's level, select one of the following options:
RS G8264(config)# access user 1 level {user|operator|administrator}
show access user uid 1
RS G8264#
An end user account must be enabled before the switch recognizes and permits
login under the account. Once enabled, the switch requires any user to enter both
username and password.
RS G8264(config)# [no] access user 1 enable
To protect the switch from unauthorized access, the account lockout feature can be
enabled. By default, account lockout is disabled. To enable this feature, ensure the
strong password feature is enabled (See "Strong Passwords" on page
use the following command:
RS G8264(config)# access user strongpassword lockout
111.
101). Then