Manualshelf

R3204P16-HP Load Balancing Module Security Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
68
Description
Use the authorization command command to configure the command line authorization method.
Use the undo authorization command command to restore the default.
By default, the default authorization method is used for command line users.
For local authorization, the local users must have been configured for the command line users on the LB
module, and the level of the commands authorized to a local user must be lower than or equal to that of
the local user. Otherwise, local authorization will fail.
Related commands: authorization default.
Examples
# Configure the default ISP domain system to use local command line authorization.
<Sysname> system-view
[Sysname] domain system
[Sysname-isp-system] authorization command local
authorization default
Syntax
authorization default { local | none | radius-scheme radius-scheme-name [ local ] }
undo authorization default
View
ISP domain view
Default level
2: System level
Parameters
local: Performs local authorization.
none: Does not perform any authorization. In this case, an authenticated user is automatically authorized
with the corresponding default rights.
radius-scheme radius-scheme-name: Specifies a RADIUS scheme by its name, which is a string of 1 to 32
characters.
Description
Use the authorization default command to configure the authorization method for all types of users.
Use the undo authorization default command to restore the default.
By default, the authorization method for all types of users is local.
The RADIUS scheme specified for the current ISP domain must have been configured.
The authorization method specified with the authorization default command is for all types of users and
has a priority lower than that for a specific access mode.
RADIUS authorization is special in that it takes effect only when the RADIUS authorization scheme is the
same as the RADIUS authentication scheme. If the RADIUS authorization scheme is different from the
RADIUS authentication scheme, RADIUS authorization will fail. In addition, if a RADIUS authorization
fails, the error message returned to the NAS says that the server is not responding.