reauthorize
Function
The reauthorize command modifies the user group to which an online user belongs.
This command is supported only on the NetEngine 8000 F1A.
Parameters
| Parameter | Description | Value |
|---|---|---|
| user-group user-group-name |
Specifies a user group name. |
The value is a string of 1 to 32 case-sensitive characters, spaces not supported. |
| user-name username |
Specifies a user name. The value is in the format of "user name+@+domain name", so the user name and the domain name cannot contain ""@.The value cannot contain such characters as: \ / : ? ". |
The value is a string of 1 to 253 case-sensitive characters, spaces not supported. |
Usage Guidelines
Usage Scenario
If you cannot change the user group to which an online user belongs because the dynamic authorization server fails, run the reauthorize command to change the user group and reauthorize the user.
NOTE: In network planning, ACLs are used to control user access authority, and ACL rules are configured based on user groups. Therefore, to change a user's access authority, you can change its user group. For example, ACL rules are configured to allow user group 1 to access only the internal network and user group 2 to access both internal and external networks. When user A in user group 1 goes online, user A can access the internal network only. To allow user A to access both internal and external networks, reauthorize user A by changing its user group to user group 2.Prerequisites
The reauthorize enable command has been run to enable commandline reauthorization.
Precautions
In VS mode, this command is supported only by the admin VS.
The user who runs this command must be online, and the user name must be in the format of "user name+@+domain name". Otherwise, an error message will be displayed.