H3C S7500 Series Ethernet Switches Operation Manual

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module

551

552

553

554

555

556

557

558

559

560

Operation Manual – AAA & RADIUS & HWTACACS & EAD

H3C S7500 Series Ethernet Switches

Chapter 1 AAA & RADIUS & HWTACACS

Configuration

1-35

Caution:

z The primary and secondary authorization servers cannot use the same IP address.

Otherwise, the system will prompt unsuccessful configuration.

z You can remove a server only when it is not being used by any active TCP

connection for sending authorization packets.

1.5.4 Configuring HWTACACS Accounting Servers

Table 1-26 Configure HWTACACS accounting servers

To do... Use the command... Remarks

Enter system view

system-view

—

Create a HWTACACS

scheme and enter its

view

hwtacacs scheme

hwtacacs-scheme-name

Required

By default, no HWTACACS

scheme exists.

Set the IP address and

port number of the

primary TACACS

accounting server

primary accounting

ip-address [ port ]

Required

By default, the IP address of

the primary accounting

server is 0.0.0.0, and the

port number is 0.

Set the IP address and

port number of the

secondary TACACS

accounting server

secondary accounting

ip-address [ port ]

Required

By default, the IP address of

the secondary accounting

server is 0.0.0.0, and the

port number is 0.

Enable the

stop-accounting

packets retransmission

function and set the

maximum number of

attempts

retry stop-accounting

retry-times

Optional

By default, the

stop-accounting packets

retransmission function is

enabled and the system can

transmit a stop-accounting

request for 100 times.