Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series Controller AOS
641642643644645646647648649650
Parameter Description Default
To verify if authentication of local management user
accounts is enabled or disabled, use the following command:
show mgmt-user local-authentication-mode
ssh-pubkey
Configures certificate authentication of administrative users
using the CLI through SSH.
client-cert
Name of the X.509 client certificate for authenticating
administrative users using SSH.
<username>
Name of the user.
<role>
Role assigned to the authenticated user.
<rcp>
Revocation Checkpoint for the ssh user's client certificate. The
rcp checks the revocation status of the SSH user’s client cer-
tificate before permitting access.
webui-cacert
The client certificate for authenticating administrative users
using the WebUI.
<certificate_name>
The CA certificate. If configured, certificate authentication
and authorization are automatically completed using an
authentication server.
serial
Serial number of the client certificate.
<username>
Name of the user.
<role>
Role assigned to the authenticated user.
Usage Guidelines
You can configure client certificate authentication of WebUI or SSH management users (by default, only
username/password is used). To configure certificate authentication for the WebUI or SSH, use the web-server
mgmt-auth certificate or ssh mgmt-auth public-key commands, respectively.
Use webui-cacert <certificate name> command if you want an external authentication server to derive the
management user role. This is helpful if there are a large number of users who need to be authenticated.
Or, use the mgmt-user webui-cacert <certificate_name> serial <number> <username> <role> if you
want the authentication process to use previously configured certificate name and serial number to derive the
user role.
Use the mgmt-user webui-cacert <certificate_name> serial <number> <username> <role>
<rcp>command if you want to configure an optional RCP for an ssh-pubkey user.
Example
See the web-server and ssh command descriptions for examples of certificate and public key authentication.
The following command configures a management user and role:
(host) (config) #mgmt-user zach_jennings root
Dell Networking W-Series ArubaOS 6.4.x | User Guide mgmt-user | 648