R2511-HP MSR Router Series Terminal Access Configuration Guide(V5)

ManualsBrandsHP ManualsNetwork HardwareHP MSR1003-8 AC Router

101

102

103

104

105

106

107

108

109

110

Ste

Command Remarks

3. Bind the terminal to the VPN.

bind vpn-instance vpn-name

No terminal-VPN binding is

configured by default.

Configuring AAA authentication

IP terminal access supports three authentication modes.

• none—A service can be accessed without authentication. However, this may cause security risks.

• password—A service cannot be accessed until the correct password is provided. The password is

configured on the router beforehand.

• scheme—A service cannot be accessed until both the correct username and password are provided.

The username and password are configured on the router beforehand. The scheme mode provides

local authentication and remote authentication.

{ For local authentication, configure a local user, set corresponding parameters, and specify the

service type for terminal access as Telnet.

{ For remote authentication, for example, when you configure network management software to

support IP terminal access, you set the username and password on the remote authentication

server, create a device management user, and specify the service type for terminal access as

Telnet.

For more information about authentication modes and parameters, see Security Configuration Guide. By

default, local authentication is adopted.

To configure the none authentication mode:

Ste

Command Remarks

1. Enter system view.

system-view

N/A

2. Enter IPTA service view.

ipta service service-name N/A

3. Configure the IP terminal

authentication mode as

none.

authentication-mode none

By default, the IP terminal authentication

mode is none. In other words, no terminal

authentication is performed.

To configure the password authentication mode:

Ste

Command Remarks

1. Enter system view.

system-view

N/A

2. Enter IPTA service view.

ipta service service-name N/A

3. Configure the IP terminal

authentication mode as

password.

authentication-mode password

By default, the IP terminal

authentication mode is none. In

other words, no terminal

authentication is performed.

4. Configure a login password.

set authentication password

{ cipher | simple } password

By default, no authentication is

performed, and no login password

is configured.

To configure the scheme authentication mode (local authentication):