Manualshelf

HP VPN Firewall Appliances Access Control Configuration Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
261262263264265266267268269270
262
Item Descri
p
tion
Portal Accounting
Name
Configure the accounting method for portal users.
Options include:
Local—Local accounting.
None—No accounting.
RADIUS—RADIUS accounting. You must specify the RADIUS scheme to be used.
Not Set—The device uses the settings in the Default Accounting area for portal
users.
RADIUS authentication/authorization configuration example
for Telnet/SSH users
This example describes the configuration for Telnet users. Configure RADIUS authentication and
authorization for SSH users in the same way RADIUS authentication and authorization are configured for
Telnet users.
Network requirements
As shown in Figure 159, configure the firewall to use the RADIUS server for Telnet user authentication and
authorization and add an account with the username hello@bbb on the RADIUS server, so the Telnet
user can log in to the firewall and is authorized with the privilege level 3 after login.
Set the shared key for secure RADIUS communication to expert, and set the ports for
authentication/authorization and accounting to 1812 and 1813, respectively. Configure the firewall to
include the domain name in the username sent to the RADIUS server.
Figure 159 Network diagram
Configuring the RADIUS server on IMC
For information about the RADIUS server configuration, see the configuration guides of the RADIUS
server.
Configuring the firewall
1. Configure the IP address and security zone of each interface. (Details not shown.)
2. Configure a RADIUS scheme:
a. Select User > RADIUS from the navigation tree.
b. Click Add.