About Me
MikroTik Certified Switching Engineer (MTCSWE)
1 Introduction to Networking
1-1 Basic Networking Concepts
1-2 OSI Model
1-3 TCPIP Model
1-4 Network Devices
2 MikroTik RouterOS Basics
2-1 Introduction to RouterOS
2-2 RouterOS Interface Types
2-3 Basic Configuration
2-4 User Management
2-5 System Logging
3 Switching Fundamentals
3-1 Introduction to Switching
3-2 MAC Addresses
3-3 Ethernet Frame Structure
3-4 VLAN Basics
3-5 Trunking and Inter-VLAN Routing
4 MikroTik SwitchOS Basics
4-1 Introduction to SwitchOS
4-2 SwitchOS Interface Types
4-3 Basic Configuration
4-4 User Management
4-5 System Logging
5 VLAN Configuration
5-1 VLAN Creation and Configuration
5-2 VLAN Trunking Protocol (VTP)
5-3 Inter-VLAN Routing
5-4 VLAN Security
6 Spanning Tree Protocol (STP)
6-1 Introduction to STP
6-2 STP Operation
6-3 Rapid Spanning Tree Protocol (RSTP)
6-4 Multiple Spanning Tree Protocol (MSTP)
6-5 STP Configuration
7 Link Aggregation
7-1 Introduction to Link Aggregation
7-2 Link Aggregation Control Protocol (LACP)
7-3 Static Link Aggregation
7-4 Link Aggregation Configuration
8 Quality of Service (QoS)
8-1 Introduction to QoS
8-2 QoS Models
8-3 Traffic Shaping and Policing
8-4 QoS Configuration
9 Security Features
9-1 Introduction to Network Security
9-2 Port Security
9-3 Access Control Lists (ACLs)
9-4 DHCP Snooping
9-5 Dynamic ARP Inspection (DAI)
10 Advanced Switching Topics
10-1 Layer 3 Switching
10-2 Multicast Routing
10-3 Link Layer Discovery Protocol (LLDP)
10-4 Power over Ethernet (PoE)
11 Troubleshooting and Maintenance
11-1 Common Switching Issues
11-2 Troubleshooting Tools
11-3 Switch Maintenance
11-4 Backup and Restore
12 MikroTik Certification Exam Preparation
12-1 Exam Overview
12-2 Study Tips
12-3 Practice Questions
12-4 Exam Registration and Scheduling
User Management Explained

User Management Explained

1. Key Concepts of User Management

User Management in MikroTik RouterOS involves creating, configuring, and managing user accounts. Key concepts include:

2. User Accounts

User accounts are the foundation of user management. Each account has a unique username and password, which are used for logging into the MikroTik device. User accounts can be created, modified, or deleted as needed.

Example: To create a new user account named "admin" with the password "securepass", you would use the following command:

/user add name=admin password=securepass

3. Groups

Groups are used to manage multiple user accounts more efficiently. By assigning users to groups, you can apply permissions and policies to all members of the group at once. Common groups include "full" for administrators and "read-only" for users with limited access.

Example: To create a new group named "managers" and assign the user "admin" to this group, you would use the following commands:

/user group add name=managers
/user set admin group=managers

4. Permissions

Permissions define what actions users or groups can perform on the MikroTik device. Permissions can be assigned to individual users or groups, allowing fine-grained control over access levels. Common permissions include "read", "write", and "full".

Example: To grant the "managers" group full permissions, you would use the following command:

/user group set managers policy=full

5. Authentication Methods

Authentication methods determine how user identities are verified. MikroTik RouterOS supports local authentication, where user credentials are stored on the device, as well as external authentication methods like RADIUS and TACACS+. External authentication is useful for centralized user management.

Example: To configure RADIUS authentication with a server at 192.168.1.100, you would use the following commands:

/radius add address=192.168.1.100 secret=radiussecret
/user set admin authentication=radius
© 2024 Ahmed Baheeg Khorshid. All rights reserved.