HPE Community
Other HPE Product Questions
1834056 Members
2182 Online
110063 Solutions
New Discussion

Re: Create read-only ssh user to HP-1950

 
irbk
Frequent Visitor

‎02-24-2023 11:59 AM - last edited on ‎02-26-2023 07:55 PM by

‎02-24-2023 11:59 AM - last edited on ‎02-26-2023 07:55 PM by

Create read-only ssh user to HP-1950

Hopefully I'm in the right place for this question.  

I'm the new net admin at a company with a bunch of HP-1950's.  We are implementing an SNMP monitoring system.  I've got the v3 SNMP all set up and it's working great.  One of the other things that the monitoring solution can do is a config dif, where you can be alerted to changes in configs.  However, the only way to make this happen is if I give the monitoring solution SSH access to the switch.  Not a huge problem creating an SSH only user on the switch, but then everything falls apart.  I can't figure out how to limit the SSH access to read only.  It seems the SSH user either has full access or no access.  In the end what the SSH user needs to be able to do (and this will be done via script) is run the following 

xtd-cli-mode

screen-length disable

display current-configuration

quit

I'm at a loss to try and figure out how to do this.  My google fu has failed me and the documentation for the 1950's isn't great.  The manual gives more info on password complexity than how to set up custom access levels.  It tells you that it's possible but sort of neglects to tell you how to do it.

0 Kudos
Reply
1 REPLY 1
Sunitha_Mod
Honored Contributor

‎02-26-2023 07:54 PM

‎02-26-2023 07:54 PM

Re: Create read-only ssh user to HP-1950

Hello @irbk

Thank you for reaching out to us! 

HPE Networking forum has moved to Aruba Airheads Community and for HPE networking and Aruba product queries, request you to visit and post your query here: Aruba Airheads Community 

You can refer to the below link as well for more details:

HPE Networking forum migration to Aruba Airheads c... - Hewlett Packard Enterprise Community

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.