H3C配置console口账号和密码

[H3C]user-interface console 0
    authentication-mode scheme

[H3C]local-user admin 
    password simple admin
    authorization-attribute user-role network-admin
    service-type terminal
    service-type conlse
    service-type ssh
    service-type telnet

[H3C]super password role network-admin simple admin

开telnet方法:

[H3C]user-interface vty 0  4
    authentication-mode scheme

[H3C]local-user admin 
    password simple admin
    authorization-attribute user-role network-admin
    service-type telnet

[H3C]telnet service enable
[H3C]super password role network-admin simple admin

ssh配置方法:

[H3C]public-key local create rsa
#生成rsa密钥对
The range of public key modulus is (512 ~ 2048).
If the key modulus is greater than 512, it will take a few minutes.
Press CTRL+C to abort.
Input the modulus length [default = 1024]:
Generating Keys....
Create the key pair successfully.

[H3C]ssh server enable
//开启ssh服务

[H3C]line vty  0 4
[H3C-line-vty0-4]authentication-mode scheme
[H3C-line-vty0-4]protocol inbound ssh
[H3C-line-vty0-4]quit

[H3C]local-user admin
[H3C-luser-manage-sshlient]password simple admin
[H3C-luser-manage-sshlient]service-type ssh
[H3C-luser-manage-sshlient]authorization-attribute user-role network-admin

H3C交换机telnet服务三种认证模式配置

None认证模式配置步骤:

[H3C]telnet server enable //开启Telnet 服务
[H3C]user-interface vty 0 4 //允许远程用户0-4共5个账户同时登陆
[H3C-line-vty0-4]authentication-mode none //认证模式为none,不需要认证
[H3C-line-vty0-4]user-role level-3 //设置登录用户权限

Password认证模式配置步骤:

[H3C]telnet server enable //开启Telnet 服务
[H3C]user-interface vty 0 4 //允许远程用户0-4共5个账户同时登陆
[H3C-line-vty0-4]authentication-mode password //认证模式为password,密码认证
[H3C-line-vty0-4]set authentication password simple 123 //设置明文密码123
[H3C-line-vty0-4]user-role level-3 //设置登录用户权限

Scheme认证模式配置步骤:

[H3C]telnet server enable //开启Telnet 服务
[H3C]user-interface vty 0 4 //允许远程用户0-4共5个账户同时登陆
[H3C-line-vty0-4]authentication-mode scheme //认证模式为scheme,账户+密码
[H3C-line-vty0-4]user-role level-3 //设置登录用户权限
[H3C-line-vty0-4]qu 
[H3C]local-user h3c //添加本地用户h3c
[H3C-luser-manage-h3c] password simple h2c //设置明文密码h2c
[H3C-luser-manage-h3c] service-type telnet //设置账户服务类型为telnet

H3C Comware

目前主要的版本为V3、V5、V7三个,不同版本命令有所变动,注意区分。

  1. 虚拟终端视图

    V3:user-interface vty <0-4>
V5:user-interface vty <0-15>
V7:user-interface vty <0-63>

    配置验证方式首先要进入VTY视图下,这里0 4表示允许0-4共5个用户同时登录,V5中最多允许16个用户同时登录,V7中最多允许64个。

  2. 设置登录用户权限等级(虚拟终端视图下)

    V3/V5:user privilege level <0-3> 
V7: user-role level-<0-15>

    设置认证用户的权限等级,不同权限可进行的操作不同,V3/V5中权限等级为0-3共四个等级,最高为3;V7中设置了0-15共16个权限等级,最高为15;一般给管理员设置的账户,设成为最高即可。