Remote users are those not in the database of local users. They are authenticated by methods such as NIS, LDAP, and RADIUS. The system administrator and users with appropriate configuration rights can assign remote users to a user group and assign a set of user rights to the user.
To configure remote user permissions:
Enter the following:
Authenticate only users who are in the remote users list |
Select the check box to authenticate users listed in the Remote Users list in the lower part of the page. Disabled by default. |
Remote Login |
User ID of selected user. This is the ID that the remote authentication method validates. |
Group |
Select the group to which the user will belong: Default Users: This group has only the most basic rights (described above). Power Users: This group has the same rights as Default Users plus Networking, Date/Time, Reboot & Shutdown; Diagnostics & Reports. Administrators: This group has all possible rights. |
Select or clear the checkboxes for the following rights:
Full Administrative |
Right to add, update, and delete all editable fields. |
Networking |
Right to enter network settings. |
Services |
Right to enable and disable system logging, SSH and Telnet logins, SNMP, and SMTP. |
Date/Time |
Right to set the date and time. |
Local Users |
Right to add or delete local users on the system. |
Remote Authentication |
Right to assign a remote user to a user group and assign a set of rights to the user. |
SSH Keys |
Right to set SSH keys for authenticating users. |
User Menus |
Right to create or edit a custom user menu for the CLI. |
Reboot & Shutdown |
Right to use the CLI or shut down the SLC and then reboot it. |
Firmware & Configuration |
Right to upgrade the firmware on the unit and save or restore a configuration (all settings). |
Diagnostics & Reports |
Right to obtain diagnostic information and reports about the unit. |
SLC Network |
Right to view and manage SLCs on the local subnet. |
Web Access |
Right to access Web-Manager. |
Device Ports |
Right to enter device port settings. |
PC Card |
Right to enter modem settings for PC cards. |
Listen Ports |
The device ports that the user may access to view data using the connect listen command. Enter the port numbers or the range of port numbers (for example, 1, 5, 8, 10-15). U and L denote the PC Card upper and lower slots. |
Data Ports |
The ports the user has permission to monitor and interact with using the connect direct command. |
Clear Port Buffers |
The ports whose port buffer the user has permission to clear using the set locallog clear command. |
Click the Add/Edit User button. The user information displays in the Remote Users list at the bottom of the page. The abbreviations (e.g., FA, NT, and SV stand for the user rights (e.g., Full Administrative, Networking, and Services, respectively.)
Click Apply.
Note: The logged-in user's name displays above the icon bar on the top left of each Web-Manager page. The main menu displays only those options to which the user has rights.
To add a user based on an existing user:
1. Select the remote user. The fields in the top part of the page display the current values for the user.
2. Change the Remote Login to that of the new user. It is best to change the Password too.
3. Click the Add/Edit User button. A new user is created with the original user’s settings.
4. Click Apply.
To edit a remote user:
1. Select the remote user. The fields in the top part of the page display the current values for the user.
2. Update values as desired.
3. Click the Add/Edit User button. The updated values display in the Remote Users table.
4. Click Apply.
To delete a remote user:
1. Select the remote user.
2. Click the Delete User button.
3. Click Apply.
See also