Manualshelf

R3721-F3210-F3171-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
919293949596979899100
87
The RADIUS authorization configuration takes effect only when the authentication method and
authorization method of the ISP domain use the same RADIUS scheme.
Related commands: local-user, hwtacacs scheme, and radius scheme.
Examples
# Configure the default authorization method for ISP domain test to use RADIUS authorization scheme rd
and use local authorization as the backup.
<Sysname> system-view
[Sysname] domain test
[Sysname-isp-test] authorization default radius-scheme rd local
authorization dvpn
Syntax
authorization dvpn { local | none | radius-scheme radius-scheme-name [ local ] }
undo authorization dvpn
View
ISP domain view
Default level
2: System level
Parameters
local: Performs local authorization.
none: Does not perform any authorization exchange. In this case, an authenticated LAN user can access
the network directly.
radius-scheme radius-scheme-name: Specifies a RADIUS scheme by its name, a case-insensitive string of
1 to 32 characters.
Description
Use authorization dvpn to configure the authorization method for DVPN users.
Use undo authorization dvpn to restore the default.
By default, the default authorization method for the ISP domain is used for DVPN users.
The specified RADIUS scheme must have been configured.
The RADIUS authorization configuration takes effect only when the authentication method and
authorization method of the ISP domain use the same RADIUS scheme.
Related commands: local-user, authorization default, and radius scheme.
The following matrix shows the command and firewall compatibility:
Command F1000-A-EI/S-EI
F1000-E
F5000
Firewall module
authorization dvpn No Yes Yes Yes
Examples
# Configure ISP domain test to use local authorization for DVPN users.
<Sysname> system-view