F3215-HP Load Balancing Module System Management Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module

24

Ste

p

Command

Remarks

5. Enable scheme

authentication.

authentication-mode scheme

By default, scheme authentication

is enabled on VTY user interfaces.

6. Enable the user interfaces to

support Telnet, SSH, or both

of them.

protocol inbound { all | ssh }

Optional.

By default, both Telnet and SSH

are supported.

7. Enable command

authorization.

command authorization

Optional.

By default, command authorization

is disabled. The commands

available for a user only depend

on the user privilege level.

8. Enable command accounting.

command accounting

Optional.

By default, command accounting is

disabled. The accounting server

does not record the commands

executed by users.

9. Exit to system view.

quit N/A

10. Apply an AAA authentication

scheme to the intended

domain.

a. Enter the ISP domain view:

domain domain-name

b. Apply the specified AAA

scheme to the domain:

authentication default

{ hwtacacs-scheme

hwtacacs-scheme-name

[ local ] | local | none |

radius-scheme

radius-scheme-name

[ local ] }

c. Exit to system view:

quit

Optional.

For local authentication, configure

local user accounts.

For RADIUS or HWTACACS

authentication, configure the

RADIUS or HWTACACS scheme

on the LB module and configure

authentication settings (including

the username and password) on

the server.

For more information about AAA

configuration, see Security

Configuration Guide.

11. Create a local user and enter

local user view.

local-user user-name

By default, there is a local user

named admin.

12. Set a password for the local

user.

password [ [ hash ] { cipher |

simple } password ]

By default, no password is set.

13. Specify the command level of

the user.

authorization-attribute level level

Optional.

By default, the command level is 0.

14. Specify SSH service for the

user.

service-type ssh

By default, no service type is

specified.

15. Exit to system view.

quit N/A

16. Create an SSH user, and

specify the authentication

mode for the SSH user.

ssh user username service-type

stelnet authentication-type

{ password | { any |

password-publickey | publickey }

assign publickey keyname }

N/A

17. Configure common settings

for VTY user interfaces.

See "Configuring common VTY

user interface settings (optional)."

Optional.