
<p class="wp-block-paragraph">éåéå¸ï¼é 便çåçè¨ï¼è¥æé¯èª¤è«ä¸åææã </p>



<p class="wp-block-paragraph">æ¬ç¯ä¸»è¦ä»ç´¹ JunOS ç Class è¨å®æ¹å¼</p>



<p class="wp-block-paragraph">éæ¼å¦ä½å° Class å¥ç¨è³ç¹å®ä½¿ç¨è è«åèæä¹åçæç« ï¼<a href="https://kerker.website/juniper-junos%E4%BD%BF%E7%94%A8%E8%80%85%E5%B8%B3%E8%99%9F%E8%A8%AD%E5%AE%9A/">Juniper Junos使ç¨è 帳èè¨å®</a></p>



<p class="wp-block-paragraph">

ææJuniperç¸éæç« å表ï¼<a href="https://kerker.website/juniper-junos-%E7%B3%BB%E5%88%97-%E6%96%87%E7%AB%A0%E5%88%97%E8%A1%A8/">Juniper JunOS ç³»åæç« å表</a></p>



<!--more-->



<p class="wp-block-paragraph">ç»å ¥é¡å¥æ¯ç¨ä¾ç®¡ç使ç¨è 帳èçæ¬éçè¨å®ï¼ç»å ¥é¡å¥å 許æ¨å®ç¾©ä»¥ä¸å §å®¹ï¼ </p>



<p class="wp-block-paragraph">使ç¨è ç»å ¥è·¯ç±å¨æ交æå¨æç訪åæ¬é <br>å 許ãç¦æ¢ä½¿ç¨ç¹å®å½ä»¤ <br>ç»å ¥è¶ æè¨å® </p>



<p class="wp-block-paragraph">å¨è¨å®æ¨¡å¼ä¸ä½¿ç¨ä¸åæ令ä¾å»ºç«æ°çç»å ¥é¡å¥ï¼ </p>



<pre class="wp-block-preformatted">root# edit system login class [class name] </pre>



<p class="wp-block-paragraph">éæåæ該è¦è½å¤ çå°[edit system login class [class name]]å樣ï¼è¡¨ç¤ºä½ ç¾å¨èæ¼ç·¨è¼¯classç層ç´ä¸ </p>



<p class="wp-block-paragraph">å¨ç·¨è¼¯classç層ç´ä¸å¯ä»¥ä½¿ç¨ä»¥ä¸æ令å 許ãç¦æ¢ä½¿ç¨è 使ç¨æäºå½ä»¤ï¼ </p>



<pre class="wp-block-preformatted">root# set allow-commands [æ£è¦è¡¨é示] <br>root# set deny-commands [æ£è¦è¡¨é示] </pre>



<p class="wp-block-paragraph">ééæå以å 許使ç¨è 使ç¨ææçshowæ令åconfigureæ令çºä¾ï¼ </p>



<pre class="wp-block-preformatted">root# set allow-commands "(show .*)|configure" </pre>



<p class="wp-block-paragraph">éè¦ç¹å¥æ³¨æçæ¯æ£è¦è¡¨é示éè¦ç¨å¼èæ¡èµ·ä¾ï¼èææå 許ãç¦æ¢çæ令éè¦ç¨ä¸åæ£è¦è¡¨é示å®æï¼å ¶ä¸ç¦ç¨çåªå æ¬æé«æ¼å 許ã </p>



<p class="wp-block-paragraph">å¨ç·¨è¼¯classç層ç´ä¸å¯ä»¥ä½¿ç¨ä»¥ä¸æ令å 許ãç¦ç¨ä½¿ç¨è ååconfigæªç¹å®éå±¤ï¼ </p>



<pre class="wp-block-preformatted">root# set allow-configuration [æ£è¦è¡¨é示] <br>root# set deny-configuration [æ£è¦è¡¨é示] </pre>



<p class="wp-block-paragraph">ééæå以å 許ååsystem loginçºä¾ï¼ </p>



<pre class="wp-block-preformatted">root# set allow-configuration "system login" </pre>



<p class="wp-block-paragraph">ç¶å以ä¸çè¨å®æªï¼æåå¯ä»¥å¾å°ä¸åææææshowæ令æ¬éåæ¥çã編輯configæªsystem loginé層çç»å ¥é¡å¥ã</p>



<p class="wp-block-paragraph">å¦å¤æåä¹è½ä½¿ç¨permissionsä¾é ç½®åºç¸åçæ¬éï¼permissionsæ¯ç³»çµ±ä¸ä»¥é 置好çæ¬éé(Permission Bit)ï¼æååªéè¦å°æ¬ééå¥å ¥ç»å ¥é¡å¥å³å¯ï¼å¯åè以ä¸æ令ï¼</p>



<pre class="wp-block-preformatted">root# permissions [æ¬ééå稱] </pre>



<p class="wp-block-paragraph">æåè¥è¦å¾å°ä¸åèä¸è¿°æ¬éç¸ç¬¦çç»å ¥é¡å¥ï¼æåå¯ä»¥å¥ç¨ä»¥ä¸æ¬ééï¼ </p>



<pre class="wp-block-preformatted">root# set permissions [admin-control configure view] </pre>



<p class="wp-block-paragraph">éæ¼åæ¬ééçæ¬éå §å®¹å¯ä»¥åèJuniperå®æ¹ç¶²ç«ï¼<br>https://www.juniper.net/documentation/en_US/junos/topics/concept/access-login-class-overview.html </p>



<p class="wp-block-paragraph">æå¾æ¯å¯ä»¥å¨ç»å ¥é¡å¥ä¸è¨å®è¶ æ(idle timeout)ï¼è¨å®æ¹å¼å¦ä¸ï¼ </p>



<pre class="wp-block-preformatted">root# set idle-timeout [minutes] </pre>



<p class="wp-block-paragraph">ééçè¶ æè¨å®æ¯ä»¥åéçºå®ä½ã </p>



<p class="wp-block-paragraph">å®æææè¨å®å¾è¨å¾commitæè½å¤ çæï¼å¨å½å模å¼ä¸ä½¿ç¨ä¸åæ令æ¥çå®æçè¨å®æªï¼ </p>



<pre class="wp-block-preformatted">root>; show configuration system login </pre>



<p class="wp-block-paragraph">以ä¸æ¯ä¸é¢çè¨å®ç¯ä¾æç¢ççè¨å®æªï¼ </p>



<pre class="wp-block-preformatted">class ADM { <br> permissions [ admin-control configure view ]; <br>} <br>Class ADM2 { <br> idle-timeout 60;<br> allow-commands "(show .*)|configure"; allow-configuration "system login";<br>} <br><br><br></pre>

[Juniper] Junos使用者帳號權限設置(Class)
