< Home

remote-access-user manage

Function

The remote-access-user manage command enables user management through Hypertext Transfer Protocol (HTTP) or Hypertext Transfer Protocol Secure (HTTPS).

The undo remote-access-user manage command disables HTTP- or HTTPS-based user management.

By default, HTTP- or HTTPS-based user management is disabled.

Only the S5720-HI, S5730-HI, S5731-H, S5731S-H, S5732-H, S5731-S, S5731S-S, S6720-HI, S6730-H, S6730S-H, S6730-S, and S6730S-S support this command.

Format

remote-access-user manage { http | https ssl-policy policy-name } port port-num [ acl acl-number ]

undo remote-access-user manage { http | https ssl-policy policy-name } port port-num [ acl acl-number ]

Parameters

Parameter

Description

Value

http

Indicates HTTP-based user management.

-

https

Indicates HTTPS-based user management.

-

ssl-policy policy-name

Specifies the Secure Sockets Layer (SSL) policy used by the built-in Portal server.

The value must be the name of an existing SSL policy.

port port-num

Specifies a port number.

The value is an integer that ranges from 1024 to 65535.

  • For HTTP, the value can be 80 or any integer in the range of 1025 to 55535.
  • For HTTPS, the value can be 443 or any integer in the range of 1025 to 55535.

acl acl-number

Specifies the number of an ACL.

The value is an integer that ranges from 3000 to 3999 and must be an existing ACL number.

NOTE:

A maximum of 64 ACLs can be delivered. If more than 64 ACLs are configured, only the first 64 ACLs take effect.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

After the remote-access-user manage command is run, you can manage access users through HTTP or HTTPS on a remote host or server, including forcibly logging out users, and deregistering users (by modifying the user status to pre-connection). You can also configure an ACL in the command to specify which remote hosts or servers can be used to manage users.

Prerequisites

Before enabling HTTPS-based user management, run the ssl policy policy-name command to create an SSL policy.

Precautions

If an ACL is specified, the source IP addresses defined in the ACL rules must use service ports, instead of management ports, to communicate with the device.

Example

# Enable HTTP or HTTPS based user management.

<HUAWEI> system-view
[HUAWEI] remote-access-user manage http port 8080
Parent Topic: NAC Configuration Commands (Unified Mode)
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >