R3166-R3206-HP High-End Firewalls Access Control Command Reference-6PW101
125
An HWTACACS scheme can be referenced by more than one ISP domain at the same time.
An HWTACACS scheme referenced by ISP domains cannot be removed.
Examples
# Create an HWTACACS scheme named hwt1 and enter HWTACACS scheme view.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1]
key (HWTACACS scheme view)
Syntax
key { accounting | authentication | authorization } key
undo key { accounting | authentication | authorization }
View
HWTACACS scheme view
Default level
2: System level
Parameters
accounting: Sets the shared key for authenticating HWTACACS accounting packets.
authentication: Sets the shared key for authenticating HWTACACS authentication packets.
authorization: Sets the shared key for authenticating HWTACACS authorization packets.
key: Shared key, case-sensitive in the range 1 to 64.
Description
Use the key command to set the shared key for authenticating HWTACACS authentication, authorization,
or accounting packets.
Use the undo key command to remove the configuration.
By default, no shared key is configured.
The shared keys configured on the device must match those configured on the HWTACACS servers.
Related commands: display hwtacacs.
Examples
# Set the shared key for authenticating HWTACACS accounting packets to plain text hello for
HWTACACS scheme hwt1 and specify to display the key in plain text.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1] key accounting hello
[Sysname-hwtacacs-hwt1] display this
#
hwtacacs scheme hwt1
key accounting hello
#
return