F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices Access Control Configuration Guide-6PW100
227
Ste
p
Command
Remarks
7. Specify the
authentication method
for PPP users.
authentication ppp { hwtacacs-scheme
hwtacacs-scheme-name [ local ] | local |
none | radius-scheme radius-scheme-name
[ local ] }
Optional.
The default authentication
method is used by default.
8. Specify the
authentication method
for SSL VPN users.
authentication ssl-vpn radius-scheme
radius-scheme-name
Optional.
The default authentication
method is used by default.
9. Specify the
authentication method
for privilege level
switching.
authentication super { hwtacacs-scheme
hwtacacs-scheme-name | radius-scheme
radius-scheme-name }
Optional.
The default authentication
method is used by default.
The following matrixes show the authentication methods and hardware compatibility by user type:
Hardware DVPN user authentication method com
p
atible
F1000-A-EI/F1000-S-EI No
F1000-E Yes
F5000 Yes
Firewall module Yes
U200-A No
U200-S No
Hardware Portal user authentication method com
p
atible
F1000-A-EI/F1000-S-EI Yes
F1000-E Yes
F5000 No
Firewall module Yes
U200-A Yes
U200-S Yes
Hardware SSL VPN user authentication method com
p
atible
F1000-A-EI/F1000-S-EI Yes
F1000-E Yes
F5000 No
Firewall module No
U200-A Yes
U200-S Yes
460BConfiguring authorization methods for an ISP domain
In AAA, authorization is a separate process at the same level as authentication and accounting. Its
responsibility is to send authorization requests to the specified authorization servers and to send