R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101
181
Verifying the configuration
After the configuration, the Telnet user should be able to Telnet to the Firewall and use the configured
account (username hello@bbb and password abc) to enter the user interface of the Firewall, and access
all the commands of level 0 to level 3.
Configure RADIUS schemes at the CLI
RADIUS scheme configuration task list
Task Remarks
Creating a RADIUS scheme Required
Specifying the RADIUS authentication/authorization servers Required
Specifying the RADIUS accounting servers and the relevant parameters Optional
Specifying the shared keys for authenticating RADIUS packets Optional
Specifying the VPN to which the servers belongs Optional
Setting the supported RADIUS server type Optional
Setting the maximum number of RADIUS request transmission attempts Optional
Setting the status of RADIUS servers Optional
Setting the username format and traffic statistics units Optional
Specifying the source IP address for outgoing RADIUS packets Optional
Setting timers for controlling communication with RADIUS servers Optional
Configuring RADIUS accounting-on Optional
Configuring the IP address of the security policy server Optional
Configuring interpretation of RADIUS class attribute as CAR parameters Optional
Enabling the trap function for RADIUS Optional
Enabling the RADIUS listening port of the RADIUS client Optional
Displaying and maintaining RADIUS Optional
Creating a RADIUS scheme
Before performing other RADIUS configurations, follow these steps to create a RADIUS scheme and enter
RADIUS scheme view:
Step Command Remarks
1. Enter system view.
system-view N/A
2. Create a RADIUS scheme and
enter RADIUS scheme view.
radius scheme
radius-scheme-name
No RADIUS scheme exists by
default.
NOTE:
A
RADIUS scheme can be referenced by multiple ISP domains at the same time.