Manualshelf

Operation Manual

ManualsBrandsTrapeze smart mobile ManualsSoftwareMobility System Software 7.3
181182183184185186187188189190
AAA Commands
Mobility System Software Command Reference Guide
Version 7.3
9 – 188
Examples
The following command adds user Hosni to the cardiology user group:
MX# set user Hosni group cardiology
success: change accepted.
See Also
clear user group on page 9-158
show aaa on page 9-190
set usergroup
Creates a user group in the local database on the MX for users and assigns authorization
attributes for the group.
(To create user groups and assign authorization attributes in RADIUS, see the documentation for
your RADIUS server.)
Syntax
set usergroup group-name attr attribute-name value
Defaults
None.
Access
Enabled.
History
Usage
To change the value of an attribute, enter set usergroup attr with the new value. To
delete an attribute, use clear usergroup attr.
To add a user to a group, user the command set user group.
You can assign attributes to individual users and to user groups. If attributes are configured for a
user and also for the group the user belongs, the attributes assigned to the individual user take
precedence for that user. For example, if the start-date attribute configured for a user is earlier
than the start-date configured for the user group the user belongs, network access for the user can
begin as soon as the user start-date. The user does not need to wait for the user group start date.
Examples
The following command adds the user group cardiology to the local database and
assigns all the group members to VLAN crimson:
MX# set usergroup cardiology attr vlan-name crimson
success: change accepted.
See Also
clear usergroup on page 9-159
clear usergroup attr on page 9-159
group-name Name of a group for password users. Specify a name of up to
32 alphanumeric characters, with no spaces. The name must begin
with an alphabetic character.
attribute-name value Name and value of an attribute you are using to authorize all users in
the group for a particular service or session characteristic. For a list of
authorization attributes and values that you can assign to users, see
Table 9– 9 on page 179.
MSS Version 1.0 Command introduced.
MSS Version 7.0 The following attributes were added:
simultaneous-loginsrange from 0 (none) to 1000.
termination-actions—select 0 (terminate session when it expires) or 1
(re-authenticate by sending a request to the RADIUS server).
user-name—type the username to display in the session information.