Login authentication
Username:test@bbb
Password:
<Switch> ?
User view commands:
cluster
display
ping
quit
ssh2
super
telnet
tracert
When switching to user privilege level 3, the Telnet user only needs to enter password enabpass
as prompted.
<Switch> super 3
Password:
User privilege level is 3, and only those commands can be used
whose level is equal or less than this.
Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE
If the HWTACACS server is not available, the Telnet user needs to enter password 654321 as
prompted for local authentication.
<Switch> super 3
Password:
Error: Invalid configuration or no response from the authentication server.
Info: Change authentication mode to local.
Password:
User privilege level is 3, and only those commands can be used
whose level is equal or less than this.
Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE
Troubleshooting AAA
Troubleshooting RADIUS
Symptom 1
User authentication/authorization always fails.
Analysis
Possible reasons include:
A communication failure exists between the NAS and the RADIUS server.
•
The username is not in the format userid@isp-name or the ISP domain is not correctly configured on
•
the NAS.
•
The user is not configured on the RADIUS server.
Run cluster command
Display current system information
Ping function
Exit from current command view
Establish a secure shell client connection
Set the current user priority level
Establish one TELNET connection
Trace route function
Enter the password for HWTACACS privilege level switching authentication
Enter the password for local privilege level switching authentication
69