Manualshelf

3Com Switch 8800 Advanced Software V5 Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 9400sl 4-Port 10-GbE Module
901902903904905906907908909910
AAA, RADIUS and HWTACACS Configuration Examples 911
# Apply the AAA schemes to the domain. Here all the three schemes of
authentication, authorization, and accounting schemes are configured.
<Sysname> system-view
[Sysname] domain 1
[Sysname-isp-1] authentication login radius-scheme rad
[Sysname-isp-1] authorization login radius-scheme rad
[Sysname-isp-1] accounting login radius-scheme rad
[Sysname-isp-1] quit
# You can achieve the same purpose by setting default AAA schemes for all types
of users.
[Sysname] domain 1
[Sysname-isp-1] authentication default radius-scheme rad
[Sysname-isp-1] authorization default radius-scheme rad
[Sysname-isp-1] accounting default radius-scheme rad
AAA for FTP/Telnet Users
by the Device Itself
n
Configuration of local authentication and authorization for FTP users is similar
to that for Telnet users. The following takes Telnet users as an example.
Currently, keeping accounts on FTP users is not supported.
Network requirements
As shown in Figure 263, configure the switch to perform local authentication,
authorization, and accounting of Telnet users.
Network diagram
Figure 263 Configure local authentication/authorization/accounting for Telnet users
Configuration procedure
1 Solution 1: Use local authentication, authorization, and accounting
# Enable the Telnet server on the device.
<Sysname> system-view
[Sysname] telnet server enable
# Configure the switch to use AAA for Telnet users.
[Sysname] user-interface vty 0 4
[Sysname-ui-vty0-4] authentication-mode scheme
[Sysname-ui-vty0-4] quit
# Create local user named telnet.
Internet
Telnet user