Aaa Configuration Examples; Aaa For Telnet Users By An Hwtacacs Server - HP 3600 v2 Series Security Configuration Manual
Hide thumbs
Also See for 3600 v2 Series:
- Command reference manual (510 pages) ,
- Configuration manual (449 pages) ,
- Installation manual (62 pages)
Table of Contents
Advertisement
AAA configuration examples
AAA for Telnet users by an HWTACACS server
Network requirements
As shown in
authorization, and accounting services for Telnet users.
Set the shared keys for secure communication with the HWTACACS server to expert. Configure the
switch to remove the domain name from a username before sending the username to the HWTACACS
server.
Figure 11 Network diagram
Configuration procedure
Configure the switch
1.
# Assign IP addresses to the interfaces. (Details not shown)
# Enable the Telnet server on the switch.
<Switch> system-view
[Switch] telnet server enable
# Configure the switch to use AAA for Telnet users.
[Switch] user-interface vty 0 4
[Switch-ui-vty0-4] authentication-mode scheme
[Switch-ui-vty0-4] quit
# Create HWTACACS scheme hwtac.
[Switch] hwtacacs scheme hwtac
# Specify the primary authentication server.
[Switch-hwtacacs-hwtac] primary authentication 10.1.1.1 49
# Specify the primary authorization server.
[Switch-hwtacacs-hwtac] primary authorization 10.1.1.1 49
# Specify the primary accounting server.
[Switch-hwtacacs-hwtac] primary accounting 10.1.1.1 49
# Set the shared keys for secure authentication, authorization, and accounting communication to expert.
[Switch-hwtacacs-hwtac] key authentication simple expert
[Switch-hwtacacs-hwtac] key authorization simple expert
Figure 1
1, configure the switch to use the HWTACACS server to provide authentication,
49
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
