首页 科技问答 渊羡,我需要LS-5560X-54F-EI的三权分立配置文档

渊羡,我需要LS-5560X-54F-EI的三权分立配置文档

科技问答 201
1677770222,CRM论坛(CRMbbs.com)——一个让用户更懂CRM的垂直性行业内容平台,CRM论坛致力于互联网、客户管理、销售管理、SCRM私域流量内容输出5年。 如果您有好的内容,欢迎向我们投稿,共建CRM多元化生态体系,创建CRM客户管理一体化生态解决方案。内容来源:知了社区渊羡 渊羡 零段 粉丝:0人 关注:0人

问题描述:

我需要LS-5560X-54F-EI的三权分立配置文档,和基础配置指导

组网及组网描述:


13小时前提问

啥是三权分立?

13小时前回答

暂无

msr36

可以参考这个,命令和MSR的是通用的


#

配置账户角色                                         
#                                                                              
role name level-3
 description Predefined level-3 role
 rule 1 permit read write web-menu m_device/m_maintenance/m_changepassword 
#
role name admin
 description 系统管理
 rule 1 permit read write execute feature
 rule 2 permit read write execute web-menu
 rule 3 deny read write execute web-menu m_monitor/
 rule 4 deny read write execute web-menu m_resource/
 rule 5 deny read write execute web-menu m_user/
 rule 6 deny read write execute web-menu m_firewall/
 rule 7 deny read write execute web-menu m_appsecurity/
 rule 8 deny read write execute web-menu m_nat/
 rule 9 deny read write execute web-menu m_vpn/
 rule 10 deny read write execute web-menu m_loadbalance/
 rule 11 deny read write execute web-menu m_network/
 rule 12 deny read write execute web-menu m_secmonitor/
#
role name security-secret
 description 安全保密管理
 rule 1 permit read write execute feature
 rule 2 permit read write execute web-menu
 rule 3 deny read write execute web-menu m_dashboard/
 rule 4 deny read write execute web-menu m_device/
 rule 5 deny read write execute web-menu m_user/
 rule 6 deny read write execute web-menu m_secmonitor/
#

配置三权账户                                         
#
local-user admin class manage
 service-type ftp
 service-type telnet terminal https
 authorization-attribute work-directory slot1#flash:
 authorization-attribute user-role admin
 password-control aging 7
 password-control length 8
 password-control composition type-number 3 type-length 1
 password-control login-attempt 5 exceed lock-time 10
#
local-user audit class manage
 service-type telnet terminal https
 authorization-attribute user-role security-audit
 password-control aging 7
 password-control length 8
 password-control composition type-number 3 type-length 1
 password-control login-attempt 5 exceed lock-time 10
#
local-user secret class manage
 service-type telnet terminal https
 authorization-attribute work-directory slot1#flash:
 authorization-attribute user-role level-3
 authorization-attribute user-role security-secret
 password-control aging 7
 password-control length 8
 password-control composition type-number 3 type-length 1
 password-control login-attempt 5 exceed lock-time 10
#

使能HTTPS管理及WebUI日志功能                                         
#
 ip https enable
 webui log enable


13小时前回答

暂无

你正在,我需要LS-5560X-54F-EI的三权分立配置文档

连接限制

相关推荐

热门文章

广告

文章目录

    标签列表

    扫码二维码

    本站内容源自互联网,如有内容侵犯了您的权益,请联系删除相关内容。

    Copyright © 2019-2023 CRM论坛. All Rights Reserved. |文章投稿|关于CRM论坛|豫ICP备17017144号
    Theme By CATBEI