- Community Home
- >
- Networking
- >
- IMC
- >
- Re: privilege-mode
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-23-2014 08:49 PM
01-23-2014 08:49 PM
privilege-mode
Hello,
I have IMC 7 and a 5412zl switch with K.15.10.0009 software. I want to login with SSH to the switch using IMC radius authentication and be left at the priviledge prompt (#) at once, without having to login twice.
In IMC I went to "User - Access User - Device User" and added an account name with:
Service Type = Console
EXEC Priority = 6
Role Name = Administrative-User
IP Address List of Managed Devices = Ip addresses of my switches
On my 5412zl I have the following Radius config:
radius-server host 10.18.7.2 key "MyRadiusPass"
aaa authentication login privilege-mode
aaa authentication web login radius local
aaa authentication web enable radius local
aaa authentication ssh login radius local
aaa authentication ssh enable radius local
The switch communicates with IMC and let's me login with the Account Name I created; however, It won't login straight into the # prompt...it always makes me login two times.
Any ideas?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-23-2014 11:53 PM
01-23-2014 11:53 PM
Re: privilege-mode
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-25-2014 07:30 PM
01-25-2014 07:30 PM
Re: privilege-mode
Lindsay,
I do not have any aaa authorization commands, only aaa authentication...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-27-2014 01:13 PM
01-27-2014 01:13 PM
Re: privilege-mode
So you've got configuration to Authenticate users, but you haven't configured anything that specifies their authorization level. That's why you can login, but you're not getting the privilege level you need.
You'll probably want to configure aaa authorization to use RADIUS.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-04-2014 12:35 PM
02-04-2014 12:35 PM
Re: privilege-mode
Lindsay,
It is not about the priviledge level, it's about the priviledge MODE and being able to login to the switch and be left at the # prompt through AAA authentication. I don't need to authorize commands at all.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-11-2014 07:26 AM - edited 04-11-2014 07:27 AM
04-11-2014 07:26 AM - edited 04-11-2014 07:27 AM
Re: privilege-mode
Hello
I have the same problem with HP switch 2910 i must login twice
is there a way to make some user only see the first level the operator
and another user have full access ?