hpe:switch:5700:configuration:configuration_example_script_3
Initial Setup stack and basic access control
# version 7.1.045, Release 2432P02 # sysname HPE # clock timezone GMT-5 minus 05:00:00 clock protocol ntp # irf mac-address persistent timer irf auto-update enable undo irf link-delay irf member 1 priority 1 irf member 2 priority 1 irf mode normal # igmp-snooping # system-working-mode StandardBridge fan prefer-direction slot 1 port-to-power fan prefer-direction slot 2 port-to-power password-recovery enable # vlan 1 name vlan 1 description vlan 1 igmp-snooping enable igmp-snooping querier # irf-port 1/2 port group interface FortyGigE1/0/41 port group interface FortyGigE1/0/42 # irf-port 2/1 port group interface FortyGigE2/0/41 port group interface FortyGigE2/0/42 # interface Bridge-Aggregation1 description BA1 test port link-type trunk port trunk permit vlan all link-aggregation mode dynamic # interface NULL0 # interface Vlan-interface1 description vlan 1 ip address 10.10.10.1 255.255.255.0 # interface FortyGigE1/0/41 # interface FortyGigE1/0/42 # interface FortyGigE2/0/41 # interface FortyGigE2/0/42 # interface M-GigabitEthernet0/0/0 # interface Ten-GigabitEthernet1/0/1 # interface Ten-GigabitEthernet1/0/2 # interface Ten-GigabitEthernet1/0/3 # interface Ten-GigabitEthernet1/0/4 # interface Ten-GigabitEthernet1/0/5 # interface Ten-GigabitEthernet1/0/6 # interface Ten-GigabitEthernet1/0/7 # interface Ten-GigabitEthernet1/0/8 # interface Ten-GigabitEthernet1/0/9 # interface Ten-GigabitEthernet1/0/10 # interface Ten-GigabitEthernet1/0/11 # interface Ten-GigabitEthernet1/0/12 # interface Ten-GigabitEthernet1/0/13 # interface Ten-GigabitEthernet1/0/14 # interface Ten-GigabitEthernet1/0/15 # interface Ten-GigabitEthernet1/0/16 # interface Ten-GigabitEthernet1/0/17 # interface Ten-GigabitEthernet1/0/18 # interface Ten-GigabitEthernet1/0/19 # interface Ten-GigabitEthernet1/0/20 # interface Ten-GigabitEthernet1/0/21 # interface Ten-GigabitEthernet1/0/22 # interface Ten-GigabitEthernet1/0/23 # interface Ten-GigabitEthernet1/0/24 # interface Ten-GigabitEthernet1/0/25 # interface Ten-GigabitEthernet1/0/26 # interface Ten-GigabitEthernet1/0/27 # interface Ten-GigabitEthernet1/0/28 # interface Ten-GigabitEthernet1/0/29 # interface Ten-GigabitEthernet1/0/30 # interface Ten-GigabitEthernet1/0/31 # interface Ten-GigabitEthernet1/0/32 # interface Ten-GigabitEthernet1/0/33 # interface Ten-GigabitEthernet1/0/34 # interface Ten-GigabitEthernet1/0/35 # interface Ten-GigabitEthernet1/0/36 # interface Ten-GigabitEthernet1/0/37 # interface Ten-GigabitEthernet1/0/38 # interface Ten-GigabitEthernet1/0/39 # interface Ten-GigabitEthernet1/0/40 # interface Ten-GigabitEthernet2/0/1 # interface Ten-GigabitEthernet2/0/2 # interface Ten-GigabitEthernet2/0/3 # interface Ten-GigabitEthernet2/0/4 # interface Ten-GigabitEthernet2/0/5 # interface Ten-GigabitEthernet2/0/6 # interface Ten-GigabitEthernet2/0/7 # interface Ten-GigabitEthernet2/0/8 # interface Ten-GigabitEthernet2/0/9 # interface Ten-GigabitEthernet2/0/10 # interface Ten-GigabitEthernet2/0/11 # interface Ten-GigabitEthernet2/0/12 # interface Ten-GigabitEthernet2/0/13 # interface Ten-GigabitEthernet2/0/14 # interface Ten-GigabitEthernet2/0/15 # interface Ten-GigabitEthernet2/0/16 # interface Ten-GigabitEthernet2/0/17 # interface Ten-GigabitEthernet2/0/18 # interface Ten-GigabitEthernet2/0/19 # interface Ten-GigabitEthernet2/0/20 # interface Ten-GigabitEthernet2/0/21 # interface Ten-GigabitEthernet2/0/22 # interface Ten-GigabitEthernet2/0/23 # interface Ten-GigabitEthernet2/0/24 # interface Ten-GigabitEthernet2/0/25 # interface Ten-GigabitEthernet2/0/26 # interface Ten-GigabitEthernet2/0/27 # interface Ten-GigabitEthernet2/0/28 # interface Ten-GigabitEthernet2/0/29 # interface Ten-GigabitEthernet2/0/30 # interface Ten-GigabitEthernet2/0/31 # interface Ten-GigabitEthernet2/0/32 # interface Ten-GigabitEthernet2/0/33 # interface Ten-GigabitEthernet2/0/34 # interface Ten-GigabitEthernet2/0/35 # interface Ten-GigabitEthernet2/0/36 # interface Ten-GigabitEthernet2/0/37 # interface Ten-GigabitEthernet2/0/38 # interface Ten-GigabitEthernet2/0/39 # interface Ten-GigabitEthernet2/0/40 # scheduler logfile size 16 # line class aux user-role network-admin # line class vty user-role network-admin user-role network-operator # line aux 0 authentication-mode scheme user-role network-admin set authentication password hash $h$6$qUcb/Yuq8Eumam9u$IxF/NhJGQxGJzwJugvzCW0bVq1LnD2Uup9NmMn7ASGKLJUJnPdq0+H3uSbySx20iC1hmOQ6a1WkmxCBYNYaAZA== idle-timeout 60 0 history-command max-size 256 # line aux 1 authentication-mode scheme user-role network-admin user-role network-operator set authentication password hash $h$6$xrU3aK3sWaEX83OV$jz7BA6EUywzBgI5iMbliFunxWbA4d1DtQ5g8Cn+Ci8RamCC47o8p/sRlkWiNzrDfRnx4C2/eTlVFCZ59IOX7Kg== idle-timeout 60 0 history-command max-size 256 # line vty 0 63 authentication-mode scheme user-role network-admin user-role network-operator set authentication password hash $h$6$AEPXrehLidDL0EDU$viH+c9BL3xLcnONrIHHZhiXjtJpSCs9NLlPHsMmuk1spYkfjRSRRnsPCKCjVcHUv2cl+vQ4HhwNTiMYtsYAm9A== # snmp-agent snmp-agent local-engineid 8000002B000FCBB87D406877 snmp-agent community write GEOPOS2-ALKOSTO snmp-agent sys-info contact Ing. ALEXANDER FERREIRA snmp-agent sys-info location DIBOG-DP-R9-BACKUP-JUNIPER snmp-agent sys-info version all snmp-agent group v3 admin read-view admin write-view admin snmp-agent target-host trap address udp-domain 10.181.11.238 params securityname GEOPOS2-ALKOSTO v2c snmp-agent mib-view included admin iso snmp-agent usm-user v3 admin admin # ssh server enable sftp server enable ssh user admin service-type all authentication-type password # ntp-service enable ntp-service source Vlan-interface1 ntp-service unicast-server 10.181.0.155 # header shell %************************************ATENTION************************************ * Computer unit supported by I.T.Corporation. * * This is a computer resource for the exclusive use of Enterprise Name. * * If you are not an authorized user to enter this device * * refrain from doing so, as all activities can be monitored * * or recorded. And if evidence of unauthorized access is discovered, * * modifications to the information, attacks against the integrity of the * * Information such as the entity, among others, will be reported to the * * competent authorities. * *********************************************************************************************** header shell %************************************ATENTION************************************ * Computer unit supported by I.T.Corporation. * * This is a computer resource for the exclusive use of Enterprise Name. * * If you are not an authorized user to enter this device * * refrain from doing so, as all activities can be monitored * * or recorded. And if evidence of unauthorized access is discovered, * * modifications to the information, attacks against the integrity of the * * Information such as the entity, among others, will be reported to the * * competent authorities. * *********************************************************************************************** # undo password-control aging enable undo password-control length enable undo password-control history enable password-control login-attempt 3 exceed lock-time 2 # super password role level-8 hash $h$6$Q10nVatXQl7N1lkm$yjPaBSO3YuR9iYXZomCzVzbE0x6ASRIkvXELvVW5x/cF7biRQP865YwLCurXVNWMficHN/H3vqZZjn9/y292Rw== super password role level-0 hash $h$6$DhDzxzy8yFSw3/XW$0j1eV3D/Co6fAUvwCYJWFDH5KCCM5/Ltl/4gSeD7adcmg47mE6edSxZIRuhrsd6OUPDAtW+cXu8e64wN3qTNCQ== super password role level-15 hash $h$6$3gUrpARUxFtgDuve$bnEEQD3oEP9jo/1TrCidAZ2DUDGKb0Ujqd3MtFgu12UVEAgK/rwdS+yEivfVqYRAUw8g6cmq3leP3ASfoOXD6A== # domain system # domain default enable system # role name level-0 description Predefined level-0 role # role name level-1 description Predefined level-1 role # role name level-2 description Predefined level-2 role # role name level-3 description Predefined level-3 role # role name level-4 description Predefined level-4 role # role name level-5 description Predefined level-5 role # role name level-6 description Predefined level-6 role # role name level-7 description Predefined level-7 role # role name level-8 description Predefined level-8 role # role name level-9 description Predefined level-9 role # role name level-10 description Predefined level-10 role # role name level-11 description Predefined level-11 role # role name level-12 description Predefined level-12 role # role name level-13 description Predefined level-13 role # role name level-14 description Predefined level-14 role # user-group system # local-user admin class manage password hash $h$6$E5R46URWbOr8fNrY$buwGXOo9iUDwPbFJGQiiyBo+FbvTqQ77uMFE9mIwaVOYmT7D1w1TrYYOdIWWMZqBb6Swd3/rwsgy30JtsCvCTg== service-type ftp service-type ssh telnet terminal http https authorization-attribute user-role level-15 authorization-attribute user-role network-admin authorization-attribute user-role network-operator # local-user monitor class manage password hash $h$6$tBrSO9oANDNy1f8V$7YE0cVzdxcBDoyAlBMXwsEW1CcFfnQ7Au2v5+RIx9tBBE8vyTEZIAWm36U2Yo4FeZvGSPz9jk43yumit68rt/w== service-type ftp service-type ssh telnet terminal http https authorization-attribute user-role level-15 authorization-attribute user-role network-operator # local-user admin class network password cipher $c$3$t4X3JACXn+qOQOmhhRb0ha5gSwK6soDqTWeWapQ= service-type lan-access authorization-attribute user-role network-admin authorization-attribute user-role network-operator # local-user manager class network password cipher $c$3$f1zCXk5cP/gxqYmxyatxKUzNmeYaQHrB8BonCdA= service-type lan-access authorization-attribute user-role level-8 authorization-attribute user-role network-operator # return
hpe/switch/5700/configuration/configuration_example_script_3.txt · Last modified: 2021/03/17 21:03 by dgonzalez