3Com Switch 7750 Configuration Guide Guide
HWTACACS Configuration 511
c
CAUTION: The system supports up to 16 HWTACACS schemes. You can only
delete the schemes that are not being used.
Configuring HWTACACS
Authentication Servers
c
CAUTION:
■ The primary and secondary authentication servers cannot use the same IP
address. Otherwise, the system will prompt unsuccessful configuration.
■ You can remove a server only when it is not used by any active TCP connection
for sending authentication packets.
Configuring HWTACACS
Authorization Servers
Table 393 Create a HWTACACS scheme
Operation Command Description
Enter system view system-view -
Create a HWTACACS scheme
and enter HWTACACS view
hwtacacs scheme
hwtacacs-scheme-name
Required
By default, no HWTACACS
scheme exists.
Table 394 Configure HWTACACS authentication servers
Operation Command Description
Enter system view system-view -
Create a HWTACACS scheme
and enter its view
hwtacacs scheme
hwtacacs-scheme-name
Required
By default, no HWTACACS
scheme exists.
Set the IP address and port
number of the primary
TACACS authentication server
primary authentication
ip-address [ port ]
Required
By default, the IP address of
the primary authentication
server is 0.0.0.0, and the port
number is 0.
Set the IP address and port
number of the secondary
TACACS authentication server
secondary authentication
ip-address [ port ]
Required
By default, the IP address of
the secondary authentication
server is 0.0.0.0, and the port
number is 0.
Table 395 Configure TACACS authorization servers
Operation Command Description
Enter system view system-view -
Create a HWTACACS scheme
and enter its view
hwtacacs scheme
hwtacacs-scheme-name
Required
By default, no HWTACACS
scheme exists.
Set the IP address and port
number of the primary
TACACS authorization server
primary authorization
ip-address [ port ]
Required
By default, the IP address of
the primary authorization
server is 0.0.0.0, and the port
number is 0.