You can log into an S5500-SI series
Ethernet switch in one of the following ways:
l
Logging in locally through the Console port
l
Telneting locally or remotely to an Ethernet
port
l
Telneting to the Console port using a modem
l
Logging into the Web-based network management
system
l
Logging in through NMS (network management station)
S5500-SI series Ethernet switch supports
two types of user interfaces: AUX and VTY.
Table 1-1 Description
on user interface
|
User interface
|
Applicable user
|
Port used
|
Description
|
|
AUX
|
Users logging in through
the Console port
|
Console port
|
Each switch can
accommodate one AUX user.
|
|
VTY
|
Telnet users and SSH
users
|
Ethernet port
|
Each switch can
accommodate up to five VTY users.
|
As the AUX port and
the Console port of a H3C series switch are the same one, you will be in the
AUX user interface if you log in through this port.
Two kinds of user interface index exist:
absolute user interface index and relative user interface index.
1)
The absolute user interface indexes are as
follows:
l
AUX user interface: 0
l
VTY user interfaces: Numbered after AUX user
interfaces and increases in the step of 1
2)
A relative user interface index can be obtained
by appending a number to the identifier of a user interface type. It is
generated by user interface type. The relative user interface indexes are as
follows:
l
AUX user interface: AUX 0
l
VTY user interfaces: VTY 0, VTY 1, VTY 2, and so
on.
|
To do…
|
Use the command…
|
Remarks
|
|
Lock the current user interface
|
lock
|
Optional
Execute this command in user view.
A user interface is not locked by
default.
|
|
Specify to send messages to all user
interfaces/a specified user interface
|
send { all
| number | type number }
|
Optional
Execute this command in user view.
|
|
Disconnect a specified user interface
|
free user-interface [ type ] number
|
Optional
Execute this command in user view.
|
|
Enter system view
|
system-view
|
—
|
|
Set the banner
|
header { incoming
| legal | login | shell | motd } text
|
Optional
|
|
Set a system name for the switch
|
sysname string
|
Optional
|
|
Enter user interface view
|
user-interface [ type ] first-number [ last-number ]
|
—
|
|
Define a shortcut key for aborting tasks
|
escape-key
{ default | character }
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl+C >.
|
|
Set the history command buffer size
|
history-command max-size value
|
Optional
The default history command buffer size
is 10. That is, a history command buffer can store up to 10 commands by
default.
|
|
Set the timeout time for the user
interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time of a user
interface is 10 minutes.
With the timeout time being 10 minutes,
the connection to a user interface is terminated if no operation is performed
in the user interface within 10 minutes.
You can use the idle-timeout 0
command to disable the timeout function.
|
|
Set the maximum number of lines the
screen can contain
|
screen-length screen-length
|
Optional
By default, the screen can contain up to
24 lines.
You can use the screen-length 0
command to disable the function to display information in pages.
|
|
Make terminal services available
|
shell
|
Optional
By default, terminal services are
available in all user interfaces.
|
|
Set the display type of a terminal
|
terminal type { ansi | vt100 }
|
Optional
By default, the terminal display type is
ANSI. The device must use the same type of display as the terminal. If the
terminal uses VT 100, the device should also use VT 100.
|
|
Display the information about the current
user interface/all user interfaces
|
display users [ all ]
|
You can execute this command in any view.
|
|
Display the physical attributes and
configuration of the current/a specified user interface
|
display user-interface [ type number | number ] [ summary ]
|
You can execute this command in any view.
|
|
Display the information about the current
web users
|
display web users
|
You can execute this command in any view.
|
Chapter
2 Logging in Through the Console Port
The default system
name of S5500-SI series Ethernet switches is H3C, that is, the command line
prompt is H3C. All the following examples take H3C as the command line prompt.
To log in through the Console port is the
most common way to log into a switch. It is also the prerequisite to configure
other login methods. By default, you can log into an S5500-SI series Ethernet
switch through its Console port only.
To log into an Ethernet switch through its
Console port, the related configuration of the user terminal must be in
accordance with that of the Console port.
Table 2-1 lists the default settings of a Console port.
Table 2-1 The default settings of a Console port
|
Setting
|
Default
|
|
Baud rate
|
9,600 bps
|
|
Flow control
|
Off
|
|
Check mode
|
No check bit
|
|
Stop bits
|
1
|
|
Data bits
|
8
|
After logging into a switch, you can
perform configuration for AUX users. Refer to section 2.3
“Console Port Login Configuration” for more.
l
Connect the serial port of your PC/terminal to
the Console port of the switch, as shown in Figure 2-1.
Figure 2-1
Diagram for setting the connection to the Console
port
l
If you use a PC to connect to the Console port,
launch a terminal emulation utility (such as Terminal in Windows 3.X or
HyperTerminal in Windows 9X/Windows 2000/Windows XP) and perform the
configuration shown in Figure 2-2 through Figure 2-4 for the connection to be created. Normally, the parameters of a terminal are configured as those listed in Table 2-1.
Figure 2-2
Create a connection
Figure 2-3 Specify the port used to establish the connection
Figure 2-4
Set port parameters terminal
window
l
Turn on the switch. The user will be prompted to
press the Enter key if the switch successfully completes POST (power-on self test).
The prompt (such as <H3C>) appears after the user presses the Enter key,
as shown in Figure 2-5.
Figure 2-5 The terminal window
l
You can then configure the switch or check the
information about the switch by executing commands. You can also acquire help
by type the ? character. Refer to the following chapters for information about
the commands.
Table 2-2 lists the common configuration of Console port login.
Table 2-2 Common configuration of Console port login
|
Configuration
|
Description
|
|
Console port configuration
|
Baud rate
|
Optional
The default baud rate is 9,600 bps.
|
|
Check mode
|
Optional
By default, the check
mode of the Console port is set to “none”, which means no check
bit.
|
|
Stop bits
|
Optional
The default stop bits of
a Console port is 1.
|
|
Data bits
|
Optional
The default data bits of
a Console port is 8.
|
|
AUX user interface
configuration
|
Configure the command
level available to the users logging into the AUX user interface
|
Optional
By default, commands of
level 3 are available to the users logging into the AUX user interface.
|
|
Terminal configuration
|
Define a shortcut key for aborting tasks
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl+C >.
|
|
Define a shortcut key for starting
terminal sessions
|
Optional
By default, pressing Enter key starts the
terminal session.
|
|
Make terminal services
available
|
Optional
By default, terminal
services are available in all user interfaces
|
|
Set the maximum number of
lines the screen can contain
|
Optional
By default, the screen
can contain up to 24 lines.
|
|
Set history command
buffer size
|
Optional
By default, the history
command buffer can contain up to 10 commands.
|
|
Set the timeout time of a
user interface
|
Optional
The default timeout time
is 10 minutes.
|
Caution:
Changing of Console port configuration terminates the connection to
the Console port. To establish the connection again, you need to modify the
configuration of the termination emulation utility running on your PC
accordingly. Refer to section 2.2 “Setting Up the Connection to the Console Port” for more.
Table 2-3 lists Console port login configurations for different authentication modes.
Table 2-3 Console port login
configurations for different authentication modes
|
Authentication mode
|
Console port login configuration
|
Description
|
|
None
|
Perform common
configuration
|
Perform common
configuration for Console port login
|
Optional
Refer to section 2.3.1 “Common Configuration” for more.
|
|
Password
|
Configure the password
|
Configure the password
for local authentication
|
Required
|
|
Perform common
configuration
|
Perform common
configuration for Console port login
|
Optional
Refer to section 2.3.1 “Common Configuration” for more.
|
|
Scheme
|
Specify to perform local authentication or RADIUS authentication
|
AAA configuration specifies whether to perform local
authentication or RADIUS authentication
|
Optional
Local authentication is performed by default.
Refer to the AAA-RADIUS-HWTACACS
module for more.
|
|
Configure user name and password
|
Configure user names and passwords for local/remote users
|
Required
l The user name and password of a local user are configured on the
switch.
l The user name and password of a remote user are configured on the
DADIUS server. Refer to user manual of RADIUS server for more.
|
|
Manage AUX users
|
Set service type for AUX
users
|
Required
|
|
Perform common configuration
|
Perform common
configuration for Console port login
|
Optional
Refer to section 2.3.1 “Common Configuration” for more.
|
Changes of the
authentication mode of Console port login will not take effect unless you exit and enter again the CLI.
|
To do…
|
Use the command…
|
Remarks
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface
view
|
user-interface aux 0
|
—
|
|
Configure not to authenticate
users
|
authentication-mode
none
|
Required
By default, users logging
in through the Console port are not authenticated.
|
|
Configure the Console
port
|
Set the baud rate
|
speed speed-value
|
Optional
The default baud rate of
an AUX port (also the Console port) is 9,600 bps.
|
|
Set the check mode
|
parity { even | mark | none | odd | space
}
|
Optional
By default, the check
mode of a Console port is set to none, that is, no check bit.
|
|
Set the stop bits
|
stopbits { 1 | 1.5 | 2 }
|
Optional
The stop bits of a
Console port is 1.
|
|
Set the data bits
|
databits { 5 | 6 | 7 | 8 }
|
Optional
The default data bits of
a Console port is 8.
|
|
Configure the command
level available to users logging into the user interface
|
user privilege level level
|
Optional
By default, commands of
level 3 are available to users logging into the AUX user interface.
|
|
Define a shortcut key for starting
terminal sessions
|
activation-key character
|
Optional
By default, pressing Enter key starts the
terminal session.
|
|
Define a shortcut key for aborting tasks
|
escape-key
{ default | character }
|
Optional
The default shortcut key combination for
aborting tasks is < Ctrl+C >.
|
|
Make terminal services
available
|
shell
|
Optional
By default, terminal services
are available in all user interfaces.
|
|
Set the maximum number of
lines the screen can contain
|
screen-length screen-length
|
Optional
By default, the screen
can contain up to 24 lines.
You can use the screen-length
0 command to disable the function to display information in pages.
|
|
Set the history command
buffer size
|
history-command
max-size value
|
Optional
The default history
command buffer size is 10. That is, a history command buffer can store up to
10 commands by default.
|
|
Set the timeout time for the
user interface
|
idle-timeout minutes [ seconds ]
|
Optional
The default timeout time
of a user interface is 10 minutes.
With the timeout time
being 10 minutes, the connection to a user interface is terminated if no
operation is performed in the user interface within 10 minutes.
You can use the idle-timeout
0 command to disable the timeout function.
|
Note that the command level available to
users logging into a switch depends on both the authentication-mode none
command and the user privilege level level command, as listed in the
following table.
Table 2-4 Determine
the command level (A)
|
Scenario
|
Command level
|
|
Authentication mode
|
User type
|
Command
|
|
None (authentication-mode
none)
|
Users logging in through
Console ports
|
The user privilege
level level command not executed
|
Level 3
|
|
The user privilege
level level command already executed
|
Determined by the level
argument
|
I. Network requirements
Assume the switch is configured to allow
you to login through Telnet, and your user level is set to the administrator
level (level 3). After you telnet to the switch, you need to limit the console
user at the following aspects.
l
The user is not authenticated when logging in
through the Console port.
l
Commands of level 2 are available to user
logging into the AUX user interface.
l
The baud rate of the Console port is 19,200 bps.
l
The screen can contain up to 30 lines.
l
The history command buffer can contain up to 20
commands.
l
The timeout time of the AUX user interface is 6
minutes.
II. Network diagram
Figure 2-6 Network diagram for AUX user interface configuration (with the
authentication mode being none)
III. Configuration procedure
# Enter system view.
<H3C> system-view
# Enter AUX user interface view.
[H3C] user-interface aux 0
# Specify not to authenticate the user
logging in through the Console port.
[H3C-ui-aux0] authentication-mode
none
# Specify commands of level 2 are available
to the user logging into the AUX user interface.
[H3C-ui-aux0] user privilege level 2
# Set the baud rate of the Console port to
19,200 bps.
[H3C-ui-aux0] speed 19200
# Set the maximum number of lines the
screen can contain to 30.
[H3C-ui-aux0] screen-length 30
# Set the maximum number of commands the
history command buffer can store to 20.
[H3C-ui-aux0] history-command
max-size 20
# Set the timeout time of the AUX user
interface to 6 minutes.
[H3C-ui-aux0] idle-timeout 6
After the above configuration, to ensure
a successful login, the console user needs to change the corresponding
configuration of the terminal emulation program running on the PC, to make the
configuration consistent with that on the switch. Refer to section 2.2 “Setting Up the
Connection to the Console Port” for more.
|
To do…
|
Use the command…
|
Remarks
|
|
Enter system view
|
system-view
|
—
|
|
Enter AUX user interface
view
|
user-interface aux 0
|
—
|
|
Configure to authenticate
users using the local password
|
authentication-mode password
|
Required
By default, users logging
in through the Console port are not authenticated, while users logging in
through the Modem or Telnet need to pass the password authentication.
|
|
Set the local password
|
set authentication
password { cipher | simple } password
|
