Login Classes for User Accounts
The SRC software provides four predefined login classes to use for configuring user accounts. You can also configure login classes to precisely define access privileges for the user accounts in your SRC environment.
Access Privilege Level
Each top-level command-line interface (CLI) command and each configuration statement has an access privilege level associated with it. Users can execute only those commands and configure and view only those statements for which they have access privileges. The access privileges for each login class are defined by one or more permission options.
Permission options specify which actions are allowed by users assigned to use a login class. More than one permission option can be configured for a login class. Table 12 lists the permission options available.
The privilege level for each command and statement is listed in SRC-PE CLI Command Reference.
The SRC software also provides a default set of system login classes that have permissions preset. Table 13 lists the default system login classes.
When you configure more than one permission, the resulting set of permissions is a combination of all of the permissions set, except for
all
andcontrol
.When you configure permissions, include
view
to display information andconfigure
to enter configuration mode. Two forms for the permissions control the individual parts of the configuration:
- "Plain" form—Provides read-only capability for that permission type. An example is
interface
.- Form that ends in
-control
—Provides read and write capability for that permission type. An example isinterface-control
.Predefined Login Classes
Table 13 lists the system login classes predefined in the SRC software.
NOTE: You cannot issue the
rename
orcopy
command on a predefined login class. Doing so results in the following error message:error: target '<classname
>' is a predefined class