[JuniperOS] Creating Login, Password, Class & Permissions/Priviledge And Idle Timed Out for Users
Posted by a. Rahman Isnaini r. Sutan on January 6th, 2009
=======================
Juniper Config Manager [Here..]
=======================
Below scheme :
a. For Admin Users [Priviledge to Change anything]
1. Create Class for Admin [e.g admin]
2. Create permissions for Admin [All]
3. Create Idle Timed Out which will disconnecting admin when Idle Timed Out reached.
admin@junOS#set system login class admin idle-timeout 3 permissions all
4. Create Admin username, class and password [e.g rahman.i]
admin@junOS#set system login user rahman.i class admin authentication encrypted-password “xxxxxxx”
b. For View Only Users [Priviledge show, ping, trace ect]
1. Create Class for View Only Users [e.g monitoring]
admin@junOS#set system login class monitoring idle-timeout 3 permissions all
2. Create permissions for this user [network system view firewall access]
3. Create Idle Timed Out which will disconnecting user when Idle Timed Out reached.
4. Create View Only username, class & password [e.g monitor]
admin@junOS#set system login user rahman.i class admin authentication encrypted-password “yyyyyyy”
Here the config looks like
system
login
class admin {
idle-timeout 3;
permissions all;
}
class monitoring {
idle-timeout 3;
permissions [ network system view firewall access ];
}
user rahman.i {
full-name a.rahman.isnaini.r.sutan;
uid 2002;
class admin;
authentication {
encrypted-password “$1$F58b6h4w$5L9/5ADcOfyvvOzR54T9B.”; ## SECRET-DATA
user monitor {
full-name Network.Management.Center;
uid 2100;
class monitoring;
authentication {
encrypted-password “$1$vQKb4km1$A2nOSfvUrTZc52cQZwRiS/”; ## SECRET-DATA
}
}
Timed Out Message from System :
Warning: session will be closed in 1 minute if there is no activity
Warning: session will be closed in 10 seconds if there is no activity
Idle timeout exceeded: closing session
a. rahman isnaini r.sutan