Manualshelf

R0106-HP MSR Router Series Fundamentals Configuration Guide(V7)

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router
12345678910
ii
RBAC configuration examples ······································································································································ 26
RBAC configuration example for local AAA authentication users ··································································· 26
RBAC configuration example for RADIUS authentication users ······································································· 28
RBAC configuration example for HWTACACS authentication users ······························································ 31
Troubleshooting RBAC ··················································································································································· 34
Local users have more access permissions than intended ················································································ 34
Login attempts by RADIUS users always fail ······································································································ 35
Login overview ··························································································································································· 36
Logging in through the console port for the first device access ·············································································· 38
Logging in to the CLI ·················································································································································· 41
CLI overview ··································································································································································· 41
User lines ································································································································································ 41
Login authentication modes ·································································································································· 42
User roles ······························································································································································· 42
FIPS compliance ····························································································································································· 43
Logging in through the console/AUX port locally ······································································································ 43
Disabling authentication for console/AUX login ······························································································· 44
Configuring password authentication for console/AUX login ········································································· 45
Configuring scheme authentication for console/AUX login ············································································· 46
Configuring common console/AUX line settings ······························································································· 48
Logging in through Telnet ·············································································································································· 50
Configuring Telnet login on the device ··············································································································· 51
Using the device to log in to a Telnet server ······································································································ 57
Logging in through SSH ················································································································································ 58
Configuring SSH login on the device ·················································································································· 58
Using the device to log in to an SSH server ······································································································· 60
Logging in through a pair of modems ························································································································· 60
Configuring the device as a Telnet redirect server ····································································································· 63
Configuration procedure ······································································································································ 63
User login procedure ············································································································································ 65
Displaying and maintaining CLI login ························································································································· 66
Accessing the device through SNMP ······················································································································· 68
Configuring SNMPv3 access ········································································································································ 68
Configuring SNMPv1 or SNMPv2c access ················································································································· 69
Controlling user access ·············································································································································· 70
FIPS compliance ····························································································································································· 70
Controlling Telnet/SSH logins ······································································································································ 70
Configuration procedures ····································································································································· 70
Configuration example ········································································································································· 71
Controlling SNMP access·············································································································································· 71
Configuration procedure ······································································································································ 71
Configuration example ········································································································································· 72
Configuring command authorization ··························································································································· 73
Configuration procedure ······································································································································ 73
Configuration example ········································································································································· 74
Configuring command accounting ······························································································································· 76
Configuration procedure ······································································································································ 76
Configuration example ········································································································································· 77
Configuring FTP ·························································································································································· 79
Overview ········································································································································································· 79
FIPS compliance ····························································································································································· 79