R3303-HP HSR6800 Routers Security Command Reference
109
Parameters
seconds: HWTACACS server response timeout period in seconds, ranging from 1 to 300.
Usage guidelines
HWTACACS is based on TCP. When the server response timeout timer or the TCP timeout timer times out,
the device is disconnected from the HWTACACS server.
Examples
# Set the HWTACACS server response timeout timer to 30 seconds for HWTACACS scheme hwt1.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1] timer response-timeout 30
Related commands
display hwtacacs
user-name-format (HWTACACS scheme view)
Use user-name-format to specify the format of the username to be sent to an HWTACACS server.
Syntax
user-name-format { keep-original | with-domain | without-domain }
Default
The ISP domain name is included in the username.
Views
HWTACACS scheme view
Default command level
2: System level
Parameters
keep-original: Sends the username to the HWTACACS server as it is entered.
with-domain: Includes the ISP domain name in the username sent to the HWTACACS server.
without-domain: Excludes the ISP domain name from the username sent to the HWTACACS server.
Usage guidelines
A username is generally in the format userid@isp-name, of which isp-name is used by the device to
determine the ISP domain to which a user belongs. Some earlier HWTACACS servers, however, cannot
recognize a username that includes an ISP domain name. Before sending a username including a
domain name to such an HWTACACS server, the device must remove the domain name. This command
allows you to specify whether to include a domain name in a username to be sent to an HWTACACS
server.
If an HWTACACS scheme defines that the username is sent without the ISP domain name, do not apply
the HWTACACS scheme to more than one ISP domain. This avoids the confusing situation in which the
HWTACACS server regards two users in different ISP domains but with the same userid as one.
If the HWTACACS scheme is used for wireless users, specify the keep-original keyword. Otherwise,
authentication of the wireless users may fail.