Juniper Networks J-Series Network Router User Manual


 
Controlling User Access
This section contains the following topics:
Defining Login Classes on page 16
Creating User Accounts on page 17
Defining Login Classes
You can define any number of login classes. You then apply one login class to an
individual user account, as described in Creating User Accounts on page 17 and
Setting Up Template Accounts on page 18.
The procedure provided in this section creates a sample login class named
operator-and-boot with the following privileges:
The operator-and-boot login class can reboot the Services Router using the request
system reboot command.
The operator-and-boot login class can also use commands defined in the clear,
network, reset, trace, and view permission bits. For more information, see
Permission Bits on page 5.
To define login classes:
1. Navigate to the top of the configuration hierarchy in either the J-Web or CLI
configuration editor.
2. Perform the configuration tasks described in Table 14 on page 16.
3. If you are finished configuring the network, commit the configuration.
4. Go on to one of the following procedures:
To create user accounts, see Creating User Accounts on page 17.
To create shared user accounts, see Setting Up Template
Accounts on page 18.
Table 14: Defining Login Classes
CLI Configuration EditorJ-Web Configuration EditorTask
From the [edit] hierarchy level,
enter
edit system login
1.
In the J-Web interface, select Configuration>View
and Edit>Edit Configuration.
2.
Next to System, click Configure or Edit.
3.
Next to Login, click Configure or Edit.
Navigate to the System
Login level in the
configuration hierarchy.
16 Managing User Authentication with a Configuration Editor
J-series Services Router Administration Guide