3-10# Configure Telnet protocol is supported.[Sysname-ui-vty0] protocol inbound telnet# Set the maximum number of lines the screen can contain to 30.[Sysname-ui-vty0] screen-length 30# Set the maximum number of commands the history command buffer can store to 20.[Sysname-ui-vty0] history-command max-size 20# Set the timeout time to 6 minutes.[Sysname-ui-vty0] idle-timeout 6z Configure the authentication schemeConfigure the authentication server by referring to related parts in AAA Configuration.Logging In Through SSHSecure Shell (SSH) offers an approach to logging into a remote device securely. With encryption andstrong authentication, it protects devices against attacks such as IP spoofing and plain text passwordinterception. For the security features provided by SSH, see SSH Configuration in the Security Volume.Configuring Command AuthorizationBy default, command level for a login user depends on the user level. The user is authorized thecommand with the default level not higher than the user level. With the command authorizationconfigured, the command level for a login user is decided by both the user level and AAA authorization.If a user executes a command of the corresponding user level, the authorization server checks whetherthe command is authorized. If yes, the command can be executed.The authorization server checks the commands authorized for users through the username, and thusthe command authorization configuration involves four steps:1) Configure the authentication mode as scheme (that is, use username and password are requiredfor authentication) when users log in.2) Enable command authorization. See the following table for details.3) Configure a HWTACACS scheme. Specify the IP addresses of the HWTACACS authorizationservers and other related parameters.4) Configure the ISP domain to use the HWTACACS scheme for command line users. For details,refer to the section Configuring AAA Authorization Methods for an ISP Domain of AAAConfiguration in the Security Volume.Follow these steps to enable command authorization:To do… Use the command… RemarksEnter system view system-view —Enter AUX user interface view user-interface vty first-number[ last-number ] —Enable command authorization command authorizationRequiredDisabled by default, that is,users can execute commandswithout authorization.