H3C S7500E Series Ethernet Switches Operation Manual
Operation Manual – AAA RADIUS HWTACACS
H3C S7500E Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-32
Note:
z If more than one interface of the device is enabled with Portal, the interfaces may
use different security policy servers. You can specify up to eight security policy
servers for a RADIUS scheme.
z If the RADIUS server and the security policy server reside on the same physical
device, you do not need to configure the IP address of the security policy server.
z The specified security policy server must be a security policy server or RADIUS
server that is correctly configured and working normally. Otherwise, the device will
regard it as an illegal server.
1.4.11 Enabling the Listening Port of the RADIUS Client
Follow these steps to enable the listening port of the RADIUS client:
To do… Use the command… Remarks
Enter system view
system-view
—
Enable the listening port
of the RADIUS client
radius client enable
Optional
Enabled by default
1.5 Configuring HWTACACS
1.5.1 Creating a HWTACAS scheme
The HWTACACS protocol is configured on a per scheme basis. Before performing
other HWTACACS configurations, follow these steps to create a HWTACACS scheme
and enter HWTACACS scheme view:
To do… Use the command… Remarks
Enter system view
system-view
—
Create a HWTACACS
scheme and enter
HWTACACS scheme
view
hwtacacs scheme
hwtacacs-scheme-name
Required
Not defined by default
Note:
z Up to 16 HWTACACS schemes can be configured.
z A scheme can be deleted only when it is not referenced.