You can log in to an S5500-SI series
Ethernet switch in one of the following ways:
l
Logging in locally through the console port
l
Telnetting locally or remotely to an Ethernet
port
l
Telnetting to the console port using a modem
l
Logging in to the Web-based network management
system
l
Logging in through NMS (network management
station)
S5500-SI series Ethernet switch supports
two types of user interfaces: AUX and VTY.
Table 1-1 Description
on user interface
|
User interface
|
Applicable user
|
Port used
|
Description
|
|
AUX
|
Users logging in through the console port
|
Console port
|
Each switch can accommodate one AUX user.
|
|
VTY
|
Telnet users and SSH users
|
Ethernet port
|
Each switch can accommodate up to five
VTY users.
|
As the AUX port and
the console port of an H3C series switch are the same one, you will be in the
AUX user interface if you log in through this port.
Two kinds of user interface index exist:
absolute user interface index and relative user interface index.
1)
The absolute user interface indexes are as
follows:
l
AUX user interface: 0
l
VTY user interfaces: Numbered after AUX user
interfaces and increases in the step of 1
2)
A relative user interface index can be obtained
by appending a number to the identifier of a user interface type. It is
generated by user interface type. The relative user interface indexes are as
follows:
l
AUX user interface: AUX 0
l
VTY user interfaces: VTY 0, VTY 1, VTY 2, and so
on.
|
To do…
|
Use the command…
|
Remarks
|
|
Lock the current user interface
|
lock
|
Optional
Execute this command in user view.
A user interface is not locked by
default.
|
|
Specify to send messages to all user
interfaces/a specified user interface
|
send { all
| number | type number }
|
Optional
Execute this command in user view.
|
|
Disconnect a specified user interface
|
free user-interface [ type ] number
|
Optional
Execute this command in user view.
|
|
Enter system view
|
system-view
|
—
|
|
Set the banner
|
header { incoming
| legal | login | shell | motd } text
|
Optional
|
|
Set a system name for the switch
|
sysname string
|
Optional
|
|
Enter user interface view
|
user-interface [ type ] first-number [ last-number ]
|
—
|
|
Define a shortcut key for aborting tasks
|
escape-key
{ default | character }
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl+C >.
|
|
Set the history command buffer size
|
history-command max-size value
|
Optional
The default history command buffer size
is 10. That is, a history command buffer can store up to 10 commands by
default.
|
|
Set the timeout time for the user
interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time of a user
interface is 10 minutes.
With the timeout time being 10 minutes, the
connection to a user interface is terminated if no operation is performed in
the user interface within 10 minutes.
You can use the idle-timeout 0
command to disable the timeout function.
|
|
Set the maximum number of lines the
screen can contain
|
screen-length screen-length
|
Optional
By default, the screen can contain up to
24 lines.
You can use the screen-length 0
command to disable the function to display information in pages.
|
|
Make terminal services available
|
shell
|
Optional
By default, terminal services are
available in all user interfaces.
|
|
Set the display type of a terminal
|
terminal type { ansi | vt100 }
|
Optional
By default, the terminal display type is
ANSI. The device must use the same type of display as the terminal. If the
terminal uses VT 100, the device should also use VT 100.
|
|
Display the information about the current
user interface/all user interfaces
|
display users [ all ]
|
You can execute this command in any view.
|
|
Display the physical attributes and configuration
of the current/a specified user interface
|
display user-interface [ type number | number ] [ summary ]
|
You can execute this command in any view.
|
|
Display the information about the current
web users
|
display web users
|
You can execute this command in any view.
|
Chapter 2 Logging
In Through the Console Port
The default system
name of S5500-SI series Ethernet switches is H3C, that is, the command line prompt
is H3C. All the following examples take H3C as the command line prompt.
To log in through the console port is the
most common way to log in to a switch. It is also the prerequisite to configure
other login methods. By default, you can log in to an S5500-SI series Ethernet
switch through its console port only.
To log in to an Ethernet switch through its
console port, the related configuration of the user terminal must be in
accordance with that of the console port.
Table 2-1 lists the
default settings of a console port.
Table 2-1 The default settings of a console port
|
Setting
|
Default
|
|
Baud rate
|
9,600 bps
|
|
Flow control
|
Off
|
|
Check mode
|
No check bit
|
|
Stop bits
|
1
|
|
Data bits
|
8
|
After logging in to a switch, you can
perform configuration for AUX users. Refer to section 2.3 “Console Port Login Configuration”
for more.
l
Connect the serial port of your PC/terminal to
the console port of the switch, as shown in Figure 2-1.
Figure 2-1
Diagram for setting the connection to the console
port
l
If you use a PC to connect to the console port,
launch a terminal emulation utility (such as Terminal in Windows 3.X or
HyperTerminal in Windows 9X/Windows 2000/Windows XP) and perform the
configuration shown in Figure
2-2 through Figure
2-4 for the connection to be created. Normally, the parameters
of a terminal are configured as those listed in Table 2-1.
Figure 2-2
Create a connection
Figure 2-3 Specify the port used to establish the connection
Figure 2-4
Set port parameters
terminal window
l
Turn on the switch. The user will be prompted to
press the Enter key if the switch successfully completes POST (power-on self
test). The prompt (such as <H3C>) appears after the user presses the
Enter key.
l
You can then configure the switch or check the
information about the switch by executing commands. You can also acquire help
by type the ? character. Refer to the following chapters for information about
the commands.
Table 2-2 lists the
common configuration of console port login.
Table 2-2 Common configuration of console port login
|
Configuration
|
Description
|
|
Console
port configuration
|
Baud rate
|
Optional
The
default baud rate is 9,600 bps.
|
|
Check mode
|
Optional
By
default, the check mode of the console port is set to “none”,
which means no check bit.
|
|
Stop bits
|
Optional
The
default stop bits of a console port is 1.
|
|
Data bits
|
Optional
The
default data bits of a console port is 8.
|
|
AUX user interface configuration
|
Configure the command level available to
the users logging in to the AUX user interface
|
Optional
By default, commands of level 3 are
available to the users logging in to the AUX user interface.
|
|
Terminal configuration
|
Define a shortcut key for aborting tasks
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl + C >.
|
|
Define a shortcut key for starting
terminal sessions
|
Optional
By default, pressing Enter key starts the
terminal session.
|
|
Make terminal services available
|
Optional
By default, terminal services are
available in all user interfaces
|
|
Set the maximum number of lines the
screen can contain
|
Optional
By default, the screen can contain up to
24 lines.
|
|
Set history command buffer size
|
Optional
By default, the history command buffer
can contain up to 10 commands.
|
|
Set the timeout time of a user interface
|
Optional
The default timeout time is 10 minutes.
|
Caution:
Changing of console port configuration terminates the connection to
the console port. To establish the connection again, you need to modify the
configuration of the termination emulation utility running on your PC
accordingly. Refer to section 2.2 “Setting Up the Connection to the Console Port”
for more.
Table 2-3 lists console
port login configurations for different authentication modes.
Table 2-3 Console port login
configurations for different authentication modes
|
Authentication mode
|
Console port login configuration
|
Description
|
|
None
|
Perform common configuration
|
Perform common configuration for console
port login
|
Optional
Refer to section 2.3.1 “Common Configuration”
for more.
|
|
Password
|
Configure the password
|
Configure the password for local
authentication
|
Required
|
|
Perform common configuration
|
Perform common configuration for console
port login
|
Optional
Refer to section 2.3.1 “Common Configuration”
for more.
|
|
Scheme
|
Specify to
perform local authentication or RADIUS authentication
|
AAA configuration
specifies whether to perform local authentication or RADIUS authentication
|
Optional
Local
authentication is performed by default.
Refer to
the AAA-RADIUS-HWTACACS module for more.
|
|
Configure
user name and password
|
Configure
user names and passwords for local/remote users
|
Required
l The user name and password of a local user are configured on the
switch.
l The user name and password of a remote user are configured on the
RADIUS server. Refer to user manual of RADIUS server for more.
|
|
Manage AUX users
|
Set service type for AUX users
|
Required
|
|
Perform common configuration
|
Perform common configuration for console
port login
|
Optional
Refer to section 2.3.1 “Common Configuration”
for more.
|
Changes of the
authentication mode of console port login will not take effect unless you exit and enter again the CLI.
|
To do…
|
Use the command…
|
Remarks
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface view
|
user-interface aux 0
|
—
|
|
Configure not to authenticate users
|
authentication-mode none
|
Required
By default, users logging in through the
console port are not authenticated.
|
|
Configure the console port
|
Set the baud rate
|
speed speed-value
|
Optional
The default baud rate of an AUX port
(also the console port) is 9,600 bps.
|
|
Set the check mode
|
parity { even
| mark | none | odd | space }
|
Optional
By default, the check mode of a console
port is set to none, that is, no check bit.
|
|
Set the stop bits
|
stopbits {
1 | 1.5 | 2 }
|
Optional
The stop bits of a console port is 1.
|
|
Set the data bits
|
databits {
5 | 6 | 7 | 8 }
|
Optional
The default data bits of a console port
is 8.
|
|
Configure the command level available to users
logging in to the user interface
|
user privilege level level
|
Optional
By default, commands of level 3 are
available to users logging in to the AUX user interface.
|
|
Define a shortcut key for starting
terminal sessions
|
activation-key character
|
Optional
By default, pressing Enter key starts the
terminal session.
|
|
Define a shortcut key for aborting tasks
|
escape-key
{ default | character }
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl+C >.
|
|
Make terminal services available
|
shell
|
Optional
By default, terminal services are
available in all user interfaces.
|
|
Set the maximum number of lines the
screen can contain
|
screen-length screen-length
|
Optional
By default, the screen can contain up to
24 lines.
You can use the screen-length 0
command to disable the function to display information in pages.
|
|
Set the history command buffer size
|
history-command max-size value
|
Optional
The default history command buffer size
is 10. That is, a history command buffer can store up to 10 commands by
default.
|
|
Set the timeout time for the user
interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time of a user interface
is 10 minutes.
With the timeout time being 10 minutes,
the connection to a user interface is terminated if no operation is performed
in the user interface within 10 minutes.
You can use the idle-timeout 0
command to disable the timeout function.
|
Note that if you configure not to
authenticate the users, the command level available to users logging in to a
switch depends on both the authentication-mode none
command and the user privilege level level command, as listed in the
following table.
Table 2-4 Determine
the command level (A)
|
Scenario
|
Command level
|
|
Authentication mode
|
User type
|
Command
|
|
None (authentication-mode none)
|
Users logging in through console ports
|
The user privilege level level
command not executed
|
Level 3
|
|
The user privilege level level
command already executed
|
Determined by the level argument
|
I. Network requirements
Assume the switch is configured to allow you
to login through Telnet, and your user level is set to the administrator level
(level 3). After you telnet to the switch, you need to limit the console user
at the following aspects.
l
The user is not authenticated when logging in
through the console port.
l
Commands of level 2 are available to user
logging in to the AUX user interface.
l
The baud rate of the console port is 19,200 bps.
l
The screen can contain up to 30 lines.
l
The history command buffer can contain up to 20
commands.
l
The timeout time of the AUX user interface is 6
minutes.
II. Network diagram
Figure 2-5 Network diagram for AUX user interface configuration (with the
authentication mode being none)
III. Configuration procedure
# Enter system view.
<H3C> system-view
# Enter AUX user interface view.
[H3C] user-interface aux 0
# Specify not to authenticate the user
logging in through the console port.
[H3C-ui-aux0] authentication-mode none
# Specify commands of level 2 are available
to the user logging in to the AUX user interface.
[H3C-ui-aux0] user privilege level 2
# Set the baud rate of the console port to
19,200 bps.
[H3C-ui-aux0] speed 19200
# Set the maximum number of lines the
screen can contain to 30.
[H3C-ui-aux0] screen-length 30
# Set the maximum number of commands the
history command buffer can store to 20.
[H3C-ui-aux0] history-command
max-size 20
# Set the timeout time of the AUX user
interface to 6 minutes.
[H3C-ui-aux0] idle-timeout 6
After the above configuration, to ensure
a successful login, the console user needs to change the corresponding
configuration of the terminal emulation program running on the PC, to make the
configuration consistent with that on the switch. Refer to section 2.2 “Setting Up the Connection to the Console
Port” for more.
|
To do…
|
Use the command…
|
Remarks
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface view
|
user-interface aux 0
|
—
|
|
Configure to authenticate users using the
local password
|
authentication-mode password
|
Required
By default, users logging in through the
console port are not authenticated, while users logging in through the Modem
or Telnet need to pass the password authentication.
|
|
Set the local password
|
set authentication password { cipher | simple } password
|
Required
|
|
Configure the console port
|
Set the baud rate
|
speed speed-value
|
Optional
The default baud rate of an AUX port
(also the console port) is 9,600 bps.
|
|
Set the check mode
|
parity { even
| mark | none | odd | space }
|
Optional
By default, the check mode of a console
port is set to none, that is, no check bit.
|
|
Set the stop bits
|
stopbits {
1 | 1.5 | 2 }
|
Optional
The default stop bits o |
