R3721-F3210-F3171-HP High-End Firewalls Access Control Configuration Guide-6PW101
195
Confi
g
uration item Descri
p
tion
Primary Server IP
Enter the IP address of the primary server.
When no primary server is specified, the primary server IP address and the
primary server TCP port are empty.
If you leave the IP address field empty, any configured the primary server will be
removed.
The specified IP address of the primary server cannot be the same as that of the
secondary server.
Primary Server TCP Port
Enter the TCP port of the primary server.
Configure different TCP port numbers specific to the service types.
Secondary Server IP
Enter the IP address of the secondary server.
When no secondary server is specified, the secondary server IP and the
secondary server TCP port are empty.
If you leave the IP address field empty, any configured secondary server will be
removed.
The specified IP address of the primary server cannot be the same as that of the
secondary server.
Secondary Server TCP Port
Enter the TCP port of the secondary server.
Configure different TCP port numbers specific to the service types.
Shared Key
Select the box and type the shared key of the server in the field.
The HWTACACS client (the NAS) and HWTACACS server use the MD5
algorithm to encrypt packets exchanged between them and a shared key to
verify the packets. Only when the same key is used can they properly receive the
packets and make responses.
Confirm Shared Key
Enter the shared key for confirmation, which must be consistent with the shared
key.
Configuring HWTACACS parameters
1. If the HWTACACS scheme system already exists, select User > HWTACACS > Parameter
Configuration from the navigation tree.
Figure 150 HWTACACS parameter configuration