4000 Router Series Security Configuration Guide

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router

Ste

Command

Remarks

3. Specify a security policy

server.

security-policy-server { ipv4-address

| ipv6 ipv6-address } [ vpn-instance

vpn-instance-name ]

By default, no security policy server

is specified for a scheme.

You can specify up to eight security

policy servers for a RADIUS scheme.

Displaying and maintaining RADIUS

Execute display commands in any view and reset commands in user view.

Task Command

Display the RADIUS scheme

configuration.

display radius scheme [ radius-scheme-name ]

Display RADIUS packet statistics. display radius statistics

Clear RADIUS statistics. reset radius statistics

Configuring HWTACACS schemes

Configuration task list

Tasks at a

lance

(Required.) Creating an HWTACACS scheme

(Required.) Specifying the HWTACACS authentication servers

(Optional.) Specifying the HWTACACS authorization servers

(Optional.) Specifying the HWTACACS accounting servers

(Required.) Specifying the shared keys for secure HWTACACS communication

(Optional.) Specifying a VPN for the scheme

(Optional.) Setting the username format and traffic statistics units

(Optional.) Specifying the source IP address for outgoing HWTACACS packets

(Optional.) Setting HWTACACS timers

(Optional.) Displaying and maintaining HWTACACS

Creating an HWTACACS scheme

Create an HWTACACS scheme before performing any other HWTACACS configurations. You can

configure up to 16 HWTACACS schemes. An HWTACACS scheme can be referenced by multiple ISP

domains.

To create an HWTACACS scheme:

Ste

Command

Remarks

1. Enter system view.

system-view N/A

2. Create an HWTACACS

scheme and enter its view.

hwtacacs scheme

hwtacacs-scheme-name

By default, no HWTACACS

scheme is defined.