U Commands
This chapter describes the Cisco Nexus 1000V commands that begin with the letter U.
use-vrf
To specify the virtual routing and forwarding instance (VRF) to use to contact this server group, use the
use-vrf
command.
use-vrf
vrf-name
Syntax Description
vrf-name
|
Name of the VRF to use to contact this server group.
|
Command Modes
RADIUS server group configuration submode for the specified group (config-radius)
network-admin
network-operator
Command History
|
|
4.0(4)SV1(1)
|
This command was introduced.
|
Examples
This example shows how to specify the VRF to use to contact the server group called management:
n1000v# configure terminal n1000v(config)# aaa group server radius fred n1000v(config-radius)# use-vrf management
Related Commands
|
|
aaa group server tacacs+
|
Creates a TACACS+ server group with the specified name and puts you into the TACACS+ configuration mode for that group.
|
aaa group server radius
|
Creates a RADIUS server group and enters the RADIUS server group configuration submode for that group.
|
server
|
Configures the RADIUS server as a member of the RADIUS server group.
|
deadtime
|
Configures the monitoring dead time.
|
show radius-server groups
|
Displays the RADIUS server group configuration.
|
user (Port Profile Role)
To assign a user to a port profile role, use the
user
command. To remove the user, use the no form of the command.
user
user_name
no user
user_name
Syntax Description
user
user_name
|
Specify that a user is to be added to the port-profile role, and the name of the user (maximum of 32 characters.
|
Command Modes
Port profile role configuration (config-port-profile-role)
network-admin
Command History
|
|
4.2(1)SV1(4)
|
This command was introduced.
|
Examples
This example shows how to assign a user to the adminRole:
n1000v(config)# port-profile-role adminRole n1000v(
config-port-profile-role)#
user hdbaar
This example shows how to remove the user assignment from the adminRole:
n1000v(config)# port-profile-role adminRole n1000v(
config-role)#
no user hdbaar
Related Commands
|
|
show port-profile-role
|
Displays the port profile role configuration, including role names, descriptions, assigned users, and assigned groups.
|
show port-profile-role users
|
Displays available users and groups.
|
show port-profile
|
Displays the port profile configuration, including roles assigned to them.
|
port-profile-role
|
Creates a port profile role.
|
group
|
Assigns a group to a port profile role.
|
assign port-profile-role
|
Assigns a port profile role to a specific port profile.
|
feature port-profile-role
|
Enables support for the restriction of port profile roles.
|
port-profile
|
Creates a port profile.
|
username
To create and configure a user account, use the
username
command. To remove a user account, use the
no
form of this command.
username
user-id
[
expire
date
[past]
] [
password
[
0
|
5
]
password
] [
role
role-name
] [
sshkey
{
file
uri
|
key
}]
no username
user-id
[ role
role-name
]
Syntax Description
user-id
|
User identifier, a case-sensitive, alphanumeric character string with a maximum length of 28 characters.
Note The following characters are not permitted in usernames and login is denied to usernames containing these characters:
#
@
|
expire
date
|
(Optional) The expiration date for the user account in the format:
YYYY-MM-DD.
|
password
|
(Optional) Specifies a password for the account. The default is no password.
|
0
|
(Optional) Specifies that the password is in clear text. Clear text passwords are encrypted before they are saved to the running configuration.\
|
5
|
(Optional) Specifies that the password is in encrypted format. Encrypted passwords are not changed before they are saved to the running configuration.
|
password
|
Password string. The password is alphanumeric, case sensitive, and has a maximum of 64 characters.
Note Clear text passwords cannot contain dollar signs ($) or spaces anywhere in the password. Also, they cannot include these special characters at the beginning of the password: quotation marks (" or '), vertical bars (|), or right angle brackets (>). |
role
role-name
|
(Optional) Specifies the user role. The
role-name
is case sensitive.
|
sshkey
|
(Optional) Specifies an SSH key for the user account.
|
key
|
SSH public key string.
|
file
filename
|
Specifies the location of the file that contains the SSH public key string.
bootflash: file containing host public key for the user
volatile: file containing host public key for the user
|
Defaults
No expiration date, password, or SSH key.
The default role is the network-operator user role.
Command Modes
Global configuration (config)
network-admin
network-operator
Command History
|
|
4.0(4)SV1(1)
|
This command was introduced.
|
Usage Guidelines
You cannot delete the default admin user role.
You cannot change the expiration date for the default admin user role.
You cannot remove the network-admin role for the default admin user role.
Login is denied to usernames containing these characters:
#
@
In you have enabled password-strength checking, you can only assign strong passwords. The following are the characteristics of a strong password:
-
At least eight characters long
-
Does not contain many consecutive characters (such as “abcd”)
-
Does not contain many repeating characters (such as “aaabbb”)
-
Does not contain dictionary words
-
Does not contain proper names
-
Contains both uppercase and lowercase characters
-
Contains numbers
Caution If you do not specify a password for the user account, the user might not be able to log in.
Examples
This example shows how to create a user account with a password and a user role:
n1000v(config)# username user1 password Ci5co321 role network-admin
This example shows how to configure the SSH key for a user account:
n1000v(config)# username user1 sshkey file bootflash:key_file
Related Commands
|
|
password strength-check
|
Checks the password security strength.
|
show user-account
|
Displays the user account configuration.
|
username admin password
To change the network admin password in the running configuration, use the
username admin password
command.
username admin password
[
new-password
]
Syntax Description
new-password
|
(Optional) Password string, which is alphanumeric, case sensitive, and has a maximum of 64 characters.
|
Command Modes
Global configuration (config)
network-admin
Command History
|
|
4.0(4)SV1(1)
|
This command was introduced.
|
Examples
This example shows how to change the network admin password in the running configuration:
n1000v(config)# username admin password <new-password>
Related Commands
|
|
username
|
Creates and configures a user account.
|
show user-account
|
Displays usernames and their roles.
|