Hello,
1. ssh authentication config.
comware5 config :
[Comware5]public-key local create rsa
[Comware5]ssh server enable
[Comware5]user-interface vty 0 15
[Comware5-ui-vty0-15]authentication-mode scheme
[Comware5-ui-vty0-15]protocol inbound ssh
[Comware5]local-user <name>
[Comware5-luser-sshmanager]password simple password
[Comware5-luser-sshmanager]service-type ssh
[Comware5-luser-sshmanager]authorizationattribute level 3
[Comware5]undo telnet server enable
comawre7 config :
[Comware7]public-key local create rsa
[Comware7]ssh server enable
[Comware7]user-interface vty 0 63
[Comware7-ui-vty0-63]authentication-mode scheme
[Comware7-ui-vty0-63]protocol inbound ssh
[Comware7]local-user <name>
[Comware7-luser-sshmanager]password simple password
[Comware7-luser-sshmanager]service-type ssh
[Comware7-luser-manage-sshmanager]authorizationattribute user-role networkadm in
[Comware7]undo telnet server
2. IRF mode normal=enhanced same?
Both mode are not same and can be used in comware 5 0r comware 7.
mode: Sets the operating mode of the physical IRF port. If no mode is set, the port operates in enhanced
mode. The operating mode set in this command takes effect only when the physical port is operating as
an IRF physical port.
• enhanced—Sets the physical IRF port to operate in enhanced mode. The switch does not support
this keyword.
• normal—Sets the physical IRF port to operate in normal mode
3. info-center channel
comware7 config : info-center source default ?
console Specify the output rules for the console destination
logbuffer Specify the output rules for the log buffer destination
logfile Specify the output rules for the log file destination
loghost Specify the output rules for the log host destination
monitor Specify the output rules for the monitor destination
[H3C]info-center source default loghost level ?
alert Action must be taken immediately (severity=1)
critical Critical conditions (severity=2)
debugging Debug-level messages (severity=7)
emergency System is unusable (severity=0)
error Error conditions (severity=3)
informational Informational messages (severity=6)
notification Normal but significant conditions (severity=5)
warning Warning conditions (severity=4)
[H3C]info-center source default logfile ?
deny Deny to output logs with any severity level
level Set the severity level above which the system suppresses logs to the
specified module. Setting the level to errors, for example, allows logs
with levels emergencies, alerts, critical and errors to display
4. local-user level
comware5 config : authorization-attribute level 1
comware7 config : authorization-attribute user-role ?
STRING<1-63> User role name
network-admin
network-operator
level-0
level-1
level-2
level-3
level-4
level-5
level-6
level-7
level-8
level-9
level-10
level-11
level-12
level-13
level-14
level-15
security-audit
comware7 config : authorization-attribute user-role network-admin ?
acl Specify ACL of local user
callback-number Specify PPP callback number of local user
idle-cut Specify idle cut function for local user
user-profile Specify user profile of local user
vlan Specify VLAN ID of local user
work-directory Specify work directory of local user
Thanks!
Hello,
1. ssh authentication config. : Pease share full config of 'ssh'?
2. comware5 IRF mode normal:
comware7 config : port group interface Ten-GigabitEthernet x/x/x mode <normal> if 'normal' mode is not available then put: port group interface Ten-GigabitEthernet x/x/x
3. info-center channel
comware7 config : info-center source default logbuffer level debugging
4. local-user level:
----------> comware5 level 1 = comware7 network-admin right? --> I believe both are different
comware7 config : Use below config
authorization-attribute user-role network-admin
authorization-attribute user-role level-3
authorization-attribute user-role level-4
Thanks!