3Com Switch 8800 Advanced Software V5 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 9400sl 4-Port 10-GbE Module

881

882

883

884

885

886

887

888

889

890

890 CHAPTER 70: AAA, RADIUS AND HWTACACS CONFIGURATION

Follow these steps to create an ISP domain:

You cannot delete the default ISP domain unless you change it to a non-default

ISP domain (with the domain default disable command) first.

Configuring ISP Domain

Attributes

Follow these steps to configure ISP domain attributes:

A self-service RADIUS server, for example, CAMS, is required for the self-service

server localization function. With the self-service function, a user can manage and

control his or her accounting information or card number. A server with

self-service software is a self-service server.

Configuring an AAA

Authentication Scheme

for an ISP Domain

In AAA, authentication, authorization, and accounting are three separate

processes. Authentication refers to the interactive authentication process of

username/password/user information during access or service request. The

authentication process neither sends authorization information to a supplicant nor

triggers any accounting. You can configure AAA to use only authentication. If you

To do... Use the command... Remarks

Enter system view system-view -

Create an ISP domain domain isp-name Required

Return to system view quit -

Specify the default ISP domain domain default { disable |

enable isp-name }

Optional

The system-default ISP

domain named system by

default

To do... Use the command... Remarks

Enter system view system-view -

Create an ISP domain or enter

ISP domain view

domain isp-name Required

Place the ISP domain to the

state of active or blocked

state { active | block } Optional

When created, an ISP is in the

state of active by default, and

users in the domain can

request network services.

Specify the maximum number

of accessing users in the ISP

domain

access-limit { disable |

enable max-user-number }

Optional

No limit by default

Configure the idle cut

function

idle-cut { disable | enable

minute }

Optional

Disabled by default

Enable the self-service server

localization function and

specify the URL of the

self-service server for

changing user password

self-service-url { disable |

enable url-string }

Optional

Disabled by default

Define an IP address pool for

allocating addresses to PPP

users

ip pool pool-number

low-ip-address [

high-ip-address ]

Optional

No IP address pool is

configured by default.