The local-user command creates a local user and sets parameters of the local user.
By default, the local user admin exists in the system. The password of the user is admin@huawei.com, priority is 15, and service type is http.
local-user user-name password { key-string [ old-password password ] | simple simple-string } [ access-limit max-number | idle-timeout minutes [ seconds ] | state { block | active } ] *
Parameter |
Description |
Value |
|---|---|---|
user-name |
Specifies the user name. If the user name contains a delimiter "@", the character before "@" is the user name and the character after "@" is the domain name. If the value does not contain "@", the entire character string represents the user name and the domain name is the default one. |
The value is a string of 1 to 64 characters. It cannot contain spaces, asterisk, double quotation mark and question mark.
NOTE:
During local authentication or authorization, run the authentication-mode { local | local-case } or authorization-mode { local | local-case } command to configure case sensitivity for user names. If the parameter is set to local, user names are case-insensitive. If the parameter is set to local-case, user names are case-sensitive. Note the following when configuring case sensitivity for user names:
|
password key-string |
Specifies the password of a local user. It is recommended that you set the user password when creating a user. |
The value is a string of 1 to 256 case-sensitive characters without spaces. |
old-password password |
Specifies the old password of a local user. NOTE:
This parameter cannot be automatically displayed through the question mark help function and must be entered completely. It should be configured by the network administrator on the NMS and delivered to the device. It is not recommended that you directly specify this parameter on the device. |
The value is the password used by the local user for the current login. |
password simple simple-string |
Specifies the password of a local user. It is recommended that you set the user password when creating a user. |
The value is a string of 1 to 256 case-sensitive characters without spaces. |
access-limit max-number |
Specifies the number of connections that can be created with a specified user name. If this parameter is not specified, the number of connections that can be established by a specified user is not limited. |
The value is an integer that varies according to the types and number of devices. |
idle-timeout minutes [ seconds ] |
Specifies the timeout period for disconnection of the user.
If this parameter is not specified, the device uses the user level configured by the idle-timeout command in the user view. If minutes [ seconds ] is set to 0 0, the idle disconnection function is disabled. |
|
state { active | block } |
Specifies the status of a local user.
If a user has established a connection with the device, when the user is set in blocking state, the connection still takes effect but the device rejects subsequent authentication requests from the user. If this parameter is not specified, the status of a local user is active. |
- |
This command is available to aid upgrade compatibility. It can only be run during the configuration restoration phase of the upgrade.
Its function is the same as that of the local-user user-name { password { cipher | irreversible-cipher } password | access-limit max-number | ftp-directory directory | idle-timeout minutes [ seconds ] | privilege level level | state { block | active } } * command.