3Com Switch 8800 Advanced Software V5 Configuration Guide
AAA, RADIUS and HWTACACS Configuration Examples 909
Displaying and
Maintaining HWTACACS
AAA, RADIUS and
HWTACACS
Configuration
Examples
AAA for Telnet/SSH
Users by a RADIUS
Server
n
■ Configuration of RADIUS authentication, authorization, and accounting for
SSH users is similar to that for Telnet users. The following takes Telnet users as
an example.
■ Currently, keeping accounts on FTP users is not supported.
Network requirements
■ Configure the switch so that the RADIUS server can perform authentication,
authorization and accounting to Telnet users, as shown in
Figure 262.
■ Connect the RADIUS server of CAMS (functioning as an
authentication/accounting RADIUS server) to the switch. The IP address of the
server is 10.1.1.1.
■ Configure the shared key whereby the switch and authentication RADIUS
server exchange packets as "expert", configure the shared key whereby the
switch and accounting RADIUS server exchange packets as "expert", and
To do... Use the command... Remarks
Display configuration
information or statistics of the
specified or all HWTACACS
schemes
display hwtacacs [
hwtacacs-server-name [
statistics [ slot slot-number ]
] ]
Available in any view
Display information about
buffered stop-accounting
requests that get no
responses
display
stop-accounting-buffer {
hwtacacs-scheme
hwtacacs-scheme-name |
session-id session-id |
time-range start-time
stop-time | user-name
user-name } [ slot
slot-number ]
Clear the statistics of
HWTACACS
reset hwtacacs statistics {
accounting | all |
authentication |
authorization } [ slot
slot-number ]
Available in user view
Clear the buffered
stop-accounting packets that
are not responded
reset
stop-accounting-buffer {
hwtacacs-scheme
hwtacacs-scheme-name |
session-id session-id |
time-range start-time
stop-time | user-name
user-name } [ slot
slot-number ]