Specifications
Managing the MGX 8220 Shelf 3-5
User Accounts and Privilege Levels
Figure3-5 In-band Access Example
User Accounts and Privilege Levels
MGX 8220 systems have security features built-in to prevent unauthorized use of the system. The
security features require that each user on the system have a valid account (specified by a userID),
password, and privilege level.
The combination of account, password, and privilege level determines which commands the user can
execute.
Before a user can be logged in, the user must have a previously assigned account, password, and
privilege level. The account (userID) and privilege level are assigned using the adduser command.
There is a default password which is used the first time a user logs in. When logged in, the user can
change the password to a personal password with the cnfpwd configure password command.
Accounts
Each user is assigned an account which is known by its userID which is specified as a parameter in
the adduser command. The userID consists of up to 12 alphanumeric characters including letters,
numbers, a hyphen, and an underscore. UserIDs are case sensitive.
When a user attempts to log in, the system prompts for a valid userID.
The MGX 8220 shelf permits one superuser account and 63 user accounts. The MGX 8220 shelf
ships with a preconfigured superuser account (can also be changed by superuser).
Privilege Levels
Each account is assigned a privilege level when the account is established with the adduser
command. Only an established user can execute the adduser command to open a new account. The
account you create can only have a privilege level at the same or lower level than your own privilege
level.
All commands have an assigned privilege level. A command can only be executed by a user whose
privilege level is equal to or above the privilege level of the command. There is one superuser
privilege level and six user levels designated 1 through 6 (with 1 being the highest).