This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Enterprise
Community Forums Switches
Saving configuration on S...

Saving configuration on Switches

Latest reply: Sep 26, 2019 02:46:12 48 2 0 0
display all floors #1
Hi,

Huawei switches have an option to save configuration in user-view mode. It is a security risk as if someone is only performing some test configuration (and doesn't intend to save it for permanent use); and someone from user-view mode comes and saves it; it will be very dangerous.

Editing and saving configuration should both have a same privilege level for security.
  • x
  • convention:

Helpful (0) Favorite(0) Share Report
Sergio93
Created Sep 25, 2019 16:31:08 Helpful(2) Helpful(2)

Hello,

You can use the command below to increase the privilege needed to run those commands for save/edit:
command-privilege level 3 view shell save
This ensures that level 2 or 1 users cannot configure the 'save' command in user-view. They will get the this error :

<Huawei>sa
^
Error: Unrecognized command found at '^' position.

In addition, I see a level 1 user doesn't have access to save command, only to save logfile :

<Huawei>save logfile ?
<cr>

Hope this is useful to you.

  • x
  • convention:
BEST ANSWER! If you think I earn it!
If this post was useful to you, please click the Helpful button and flag my post as a "BEST ANSWER" so others can benefit. Thank you
umaryaqub
MVE Created Sep 26, 2019 02:46:12 Helpful(0) Helpful(0)

Thanks for clearing it out for me. Appreciate it.
  • x
  • convention:
Back to list

Reply

Reply
Advanced
B Color Image Link Quote Code Smilies
You need to log in to reply to the post Login | Register

Notice Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " Privacy."
If the attachment button is not available, update the Adobe Flash Player to the latest version!
Login and enjoy all the member benefits

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy Terms of Use
Huawei Enterprise Huawei Carrier Forum Training & Certification

Copyright © 2019 Huawei Technologies Co., Ltd. All rights reserved.

APP