Operation Manual – AAA
H3C S3100 Series Ethernet Switches Chapter 2 AAA Configuration
2-32
Table 2-33 Display and maintain HWTACACS protocol information
Operation Command Remarks
Display the configuration
or statistic information
about one specific or all
HWTACACS schemes
display hwtacacs
[ hwtacacs-scheme-name
[ statistics ] ]
Display buffered
non-response
stop-accounting requests
display
stop-accounting-buffer
hwtacacs-scheme
hwtacacs-scheme-name
You can execute the
display command
in any view.
Clear HWTACACS
message statistics
reset hwtacacs statistics
{ accounting | authentication |
authorization | all }
Delete buffered
non-response
stop-accounting requests
reset stop-accounting-buffer
hwtacacs-scheme
hwtacacs-scheme-name
You can execute the
reset command in
user view.
2.5 AAA Configuration Examples
2.5.1 Remote RADIUS Authentication of Telnet/SSH Users
 Note:
The configuration procedure for remote authentication of SSH users by RADIUS server
is similar to that for Telnet users. The following text only takes Telnet users as example
to describe the configuration procedure for remote authentication.
I. Network requirements
In the network environment shown in Figure 2-1, you are required to configure the
switch so that the Telnet users logging into the switch are authenticated by the RADIUS
server.
z A RADIUS authentication server with IP address 10.110.91.164 is connected to
the switch.
z On the switch, set the shared key it uses to exchange messages with the
authentication RADIUS server to "aabbcc".
z A CAMS server is used as the RADIUS server. You can select extended as the
server-type in a RADIUS scheme.
z On the RADIUS server, set the shared key it uses to exchange messages with the
switch to "aabbcc," set the authentication port number, and add Telnet user
names and login passwords.
To Next Page
Loading...
Need help?
General