Operation Manual

ManualsBrandsTrapeze smart mobile ManualsSoftwareMobility System Software 7.3

181

182

183

184

185

186

187

188

189

190

AAA Commands

Mobility System Software Command Reference Guide

Version 7.3

9 – 186

See Also

● clear user on page 9-157

● show aaa on page 9-190

set user attr

Configures an authorization attribute in the local database on the MX for a user with a password.

(To assign authorization attributes in RADIUS, see the documentation for your RADIUS server.)

Syntax

set user username attr attribute-name value

Defaults

None.

Access

Enabled.

History

Introduced in MSS 1.0.

Usage

To change the value of an attribute, enter set user attr with the new value. To delete an

attribute, use clear user attr.

You can assign attributes to individual users and to user groups. If attributes are configured for a

user and also for the group the user belongs, the attributes assigned to the individual user take

precedence for that user. For example, if the start-date attribute configured for a user is earlier

than the start-date configured for the user group the user is in, the user has network access as

soon as the user start-date. The user does not need to wait for the user group start date.

Examples

The following command assigns user Tamara to VLAN orange:

MX# set user Tamara attr vlan-name orange

success: change accepted.

The following command assigns Tamara to the Mobility Profile tulip.

MX# set user Tamara attr mobility-profile tulip

success: change accepted.

The following command limits the days and times when user Student1 can access the network, to

5 p.m. to 2 a.m. every weekday, and all day Saturday and Sunday:

MX# set user Student1 attr time-of-day Wk1700-0200,Sa,Su

success: change accepted.

username Username of a user with a password.

attribute-name value Name and value of an attribute you are using to

authorize the user for a particular service or session

characteristic. For a list of authorization attributes and

values that you can assign to network users, see

Table 9– 9 on page 179.

MSS Version 1.0 Command introduced.

MSS Version 7.0 The following attributes were added:

❑ simultaneous-logins—range from 0 (none) to 1000.

❑ termination-actions—select 0 (terminate session when it

expires) or 1 (re-authenticate by sending a request to the

RADIUS server).

❑ user-name—type the username to display in the session

information.