Measures reported by HPSwUserStateTest
To avoid unauthorized access to the target switch, the HP switch by default, defines user privilege levels and command levels. User privilege levels correspond to command levels. When a user at a specific privilege level logs in, the user can only use commands at that level, or lower levels. All commands are categorized into four levels: visit, monitor, system, and manage, and are identified from low to high, respectively by 0 through 3.
| Level |
Privilege |
Description |
| 0 |
Visit |
Involves commands for network diagnosis and accessing an external device. Configuration of commands at this level cannot survive a device restart. Upon device restart, the commands at this level are restored to the default settings. Commands at this level include ping, tracert, telnet and ssh2. |
| 1 |
Monitor |
Involves commands for system maintenance and service fault diagnosis. Commands at this level are not allowed to be saved after being configured. After the switch is restarted, the commands at this level are restored to the default settings. Commands at this level include debugging, terminal, refresh, reset, and send. |
| 2 |
System |
Involves service configuration commands, such as routing configuration commands and commands for configuring services at different network levels. By default, commands at this level include all configuration commands except for those at the manage level. |
| 3 |
Manage |
Involves commands that influence the basic operation of the system and commands for configuring system support modules. By default, commands at this level involve the configuration commands of file system, FTP, TFTP, Xmodem download, user management, level setting, and parameter settings within a system (which are not defined by any protocols or RFCs). |
Often, administrators find it difficult to figure out if legitimate users with required privilege levels are alone entitled to log into the switch. Unauthorized access to the switch may be a potential harm to the target environment in which the switch is deployed. Therefore it is the onus of the administrators to constantly keep track on the number of users who are blocked to access the switch. The HPSwUserStateTest test helps administrators in this regard!
This test tracks the users who are currently active on the target HP switch and the users who were blocked on the switch. The detailed diagnosis of this test reveals the name of the users along with the privilege vested to each user. This way, administrators can figure out any unauthorized access to the switch before the target environment is invaded by unauthorized users!
Outputs of the test : One set of results for the target HP switch being monitored.
The measures made by this test are as follows:
| Measurement |
Description |
Measurement Unit |
Interpretation |
| Active_users |
Indicates the number of users who are currently active on the switch. |
Percent |
The detailed diagnosis of this measure reveals the name of the users who are active on the switch and the privilege level of each user. |
| Blocked_users |
Indicates the number of users who were blocked to access the switch. |
Percent |
A sudden/gradual increase in the value of this measure may be a potential threat due to unauthorized users trying to access the switch.
The detailed diagnosis of this measure reveals the name of the users who were blocked and the privilege level of each user.
|
|