Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
21222324252627282930
30 CHAPTER 4: AAA AND RADIUS/HWTACACS PROTOCOL CONFIGURATION
Figure 8 The AAA implementation procedures for a telnet user
n
As the Comware 3.4 software is designed compatible with the configurations of
LAN switches, you can probably see in the HyperTerminal some commands and
parameters that are only supported by LAN switches when configuring your
security gateway. These commands and parameters are beyond the scope of this
manual.
Configuring AAA AAA configuration tasks include:
1 Create an ISP domain and set the related attributes
Create an ISP domain
Configure an AAA scheme
Configure the ISP domain state
Set an access limit
Enable accounting optional
Define a local IP pool and allocate IP addresses to PPP users
2 Create a local user and set the related attributes (for local authentication only)
User
HWTACACS
Client
HWTACACS
Server
User logs in
Authentication Start Request packet
Authentication response packet,
requesting for the user name
Request User for the user name
User enters the user name
Authentication continuance packet
carrying the user name
Authentication response packet,
requesting for the password
Request User for the password
User enters the password
Authentication continuance packet
carrying the password
Authentication success packet
Authorization request packet
Authorization success packet
User is permitted
Accounting start request packet
Accounting start response packet
User quits
Accounting stop packet
Accounting stop response packet
User
HWTACACS
Client
HWTACACS
Server
User logs in
Authentication Start Request packet
Authentication response packet,
requesting for the user name
Request User for the user name
User enters the user name
Authentication continuance packet
carrying the user name
Authentication response packet,
requesting for the password
Request User for the password
User enters the password
Authentication continuance packet
carrying the password
Authentication success packet
Authorization request packet
Authorization success packet
User is permitted
Accounting start request packet
Accounting start response packet
User quits
Accounting stop packet
Accounting stop response packet