华为AR1220设备重置后web无法登录，需要通过console端口配置http server enable

admin

华为AR1220设备重置后web无法登录，需要通过console端口
# V$ b; s6 H. d8 ?8 i/ y& W( r. n华为AR1220设备重置后web无法登录，需要通过console端口
- x. ]1 ]8 V5 R" Y
[Huawei]http server enable
( M& V4 O: h% l% ~" j# t$ @& R/ ]  This operation will take several minutes, please wait...................................
May 15 2022 21:08:50+00:00 Huawei ENTITYTRAP/2/CPUUSAGERISING:OID 1.3.6.1.4.1.2011.5.25.219.2.14.1 CPU utilization exceeded the pre-alarm threshold.(Index=9, HwEntityPhysicalIndex=9, PhysicalName="SRU Board 0", EntityThresholdType=0, EntityThresholdWarning=80, EntityThresholdCurrent=100, EntityTrapFaultID=144896)
  b! f; l: ]+ ~: x7 N1 S$ ?& p[Huawei]
May 15 2022 21:08:50+00:00 Huawei %%01CPUP/4/CPU_USAGE_HIGH(l)[20]:The CPU is overloaded, and the tasks with top three CPU occupancy are Co0(43.2%), loop0(14.6%), TICK(4.2%) . (CpuUsage=100%, Threshold=80%)
1 g# O! s) w6 u! g: v& {[Huawei]..............
Info: Succeeded in starting the HTTP server
[Huawei]
  x( ], p6 y0 m- J4 Z+ NMay 15 2022 21:09:00+00:00 Huawei ENTITYTRAP/4/CPUUSAGERESUME:OID 1.3.6.1.4.1.2011.5.25.219.2.14.2 CPU utilization resumed from exceeding the pre-alarm threshold.(Index=9, HwEntityPhysicalIndex=9, PhysicalName="SRU Board 0", EntityThresholdType=1, EntityThresholdWarning=80, EntityThresholdCurrent=65, EntityTrapFaultID=144896)
  l6 ^. L; [. H; ]) d/ P[Huawei]
$ a( q( O: V+ K& {; u  Please check whether system data has been changed, and save data in time
! J3 Z4 J! K) t) U. M" }  Configuration console time out, please retry to log on

1 B- b+ b# _0 L/ N/ T7 Z( vLogin authentication


然后就可以登录界面了。
- ~3 X) y- }4 `3 k

admin

Console口设置密码
1 j7 Q. d' U- ?8 }/ P; _$ P5 O( ~交换机Console口设置密码
/ ?4 N. o9 ^3 M/ o[sw1]user-interface console 0
[sw1-ui-console0]authentication-mode password
- x3 F( u8 G8 L# }[sw1-ui-console0]set authentication password ?
  cipher  Set the password with cipher text    #密码用密码文本设置密码
  simple  Set the password in plain text       #简单地设置明文密码
5 l2 S; N7 Q8 f- t8 R2 u[sw1-ui-console0]set authentication password simple 123
% i$ E- h- ]5 O8 c* T+ Y
9 O) Y5 l+ P4 A! N+ s, T5 U, `, e路由器Console口设置密码
' ]0 X9 }# E) n: ]) J, _[R1]user-interface console 0
[R1-ui-console0]authentication-mode password
/ G; F* D9 x6 E, _4 w* tPlease configure the login password (maximum length 16):123
+ B: t3 r9 B$ B! J, X0 y[R1-ui-console0]
[R1-ui-console0]q
[R1]q
$ L, z# T( g/ V& ?$ c<R1>q
  Configuration console exit, please press any key to log on
8 n. a0 E* E, @; E: I% y
8 v7 y& |& S- k1 E9 N7 W7 y( fLogin authentication

Password:输入123
( m8 k, b6 K% F* i" u<R1>sys
8 z% \- z1 |9 c3 fEnter system view, return user view with Ctrl+Z.

  u0 _0 _2 ]" Q# ^8 s3 g8 c* |
配置用户通过Telnet登录设备(真机演示)
+ ?$ j1 d9 t8 x+ k% y* R7 [5 Y[Huawei]int g0/0/0
4 a" Z: a3 X, d4 s, ^2 Z) N[Huawei-GigabitEthernet0/0/0]ip add 192.168.100.252 24   #先给需要接口设置IP
+ R0 l0 L. p, V' t$ v[Huawei]telnet server enable    #全局开启telnet
Info: Telnet is insecure, recommended to use stelnet with encryption features.
" f( |7 C' E& ]: U4 H/ u[Huawei]aaa
. V% U' X6 D3 Y. ^, y[Huawei-aaa]local-user pok password irreversible-cipher 123456  #创建本地用户，用户名：pok、密码：123456
" j0 S% w3 b9 M1 k: aInfo: Add a new user.
- P+ h4 n4 h/ A3 Z( ][Huawei-aaa]local-user pok service-type telnet   #配置本地用户pok的接入类型为telnet
[Huawei-aaa]local-user pok privilege level 3     #设置用户等级，远程用户缺省的级别都是0级，可修改Telnet用户登录后的用户级别为管理员3
9 B' l! u( J8 o0 ?3 E2 m6 SWarning: This operation may affect online users, are you sure to change the user privilege level ?[Y/N]y    确定
[Huawei-aaa]q
[Huawei]user-interface vty 0 4              #进入VTY0～VTY4用户界面视图
% A. c+ q2 J0 u[Huawei-ui-vty0-4]authentication-mode aaa   #配置VTY类型用户界面的验证方式为AAA

& G# x. q( T4 Y1 r
配置用户通过web登录设备(真机演示)
web登陆其实和上面基本是一样的。只是将上面代码中的：
local-user pokes service-type telnet
- r& E6 }0 C: \* z
替换成
0 |# d# B* s& a4 _8 d! Qlocal-user pokes service-type http ssh web

' ^- X- {7 j5 K+ p( a( A7 G[Huawei]int g0/0/0
[Huawei-GigabitEthernet0/0/0]ip add 192.168.100.252 24   #先给需要接口设置IP
[Huawei]http server enable    #全局开启telnet
Info: Telnet is insecure, recommended to use stelnet with encryption features.
2 c  V8 l, h- t3 ?6 d# a3 g) y# i[Huawei]aaa
[Huawei-aaa]local-user pok password irreversible-cipher 123456  #创建本地用户，用户名：pok、密码：123456
Info: Add a new user.
7 H# l' M" {. ]  H[Huawei-aaa]local-user pok service-type http   #配置本地用户pok的接入类型为telnet
* [- R/ f$ X4 g; u: T[Huawei-aaa]local-user pok privilege level 3     #设置用户等级，远程用户缺省的级别都是0级，可修改Telnet用户登录后的用户级别为管理员3
) `* D1 `  }% r0 a" Q; k' r/ |Warning: This operation may affect online users, are you sure to change the user privilege level ?[Y/N]y    确定
! J' E: y2 h4 k  U" B( C[Huawei-aaa]q
" T; B4 O. U6 W$ K[Huawei]user-interface vty 0 4              #进入VTY0～VTY4用户界面视图
[Huawei-ui-vty0-4]authentication-mode aaa   #配置VTY类型用户界面的验证方式为AAA
9 ?3 I1 E. G, m. k2 X0 i

说明：有个问题需要注意一下，替换完成之后就只能web登陆，不能同时登陆web和telnet。如果还需要web登陆，就需要再新建另一个用户。
重点华为设备出厂的时候，对web访问的接口做了限制，我们必须查出来哪个接口可以web访问
' j& a3 b' y8 `display current-configuration filter http serve   #查询哪个接口允许web访问
/ [' y- f. d- E* _4 \#
post-system
http server enable
& O3 m3 }  v  @! j6 Q# G9 r http server permit interface GigabitEthernet0/0/1   #这个接口可以访问
#
+ W, O; m9 y2 }9 x9 `return

解决办法有两种：
undo http server permit interface    #删除限制
+ U- i8 k2 z4 h  Xhttp server permit interface e0/0/0  #允许你的接口访问web
* V/ D% p( j; J
在这里我想说的是，华为的web界面真的是很差，我用的真机AR1220，不知道新版的怎么样。建议还是用命令把。