Operation Manual – AAA-RADIUS-HWTACACS-EAD
H3C S3600 Series Ethernet Switches-Release 1510
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
1-13
Configuration task Description Related section
Creating a
HWTACAS scheme
Required
Section
1.5.1 “Creating a
HWTACAS Scheme
”
Configuring
HWTACACS
authentication
servers
Required
Section
1.5.2
“Configuring HWTACACS
Authentication Servers
”
Configuring
HWTACACS
authorization servers
Required
Section 1.5.3
“Configuring HWTACACS
Authorization Servers
”
Configuring
HWTACACS
accounting servers
Optional
Section 1.5.4
“Configuring HWTACACS
Accounting Servers
”
Configuring shared
keys for HWTACACS
messages
Optional
Section
1.5.5
“Configuring Shared Keys
for HWTACACS
Messages
”
Configuring the
attributes for data to
be sent to TACACS
servers
Optional
Section 1.5.6
“Configuring the
Attributes for Data to be
Sent to TACACS Servers
”
HWTACACS
configuration
Configuring the
timers of TACACS
servers
Optional
Section
1.5.7
“Configuring the Timers of
TACACS Servers
”
1.3 AAA Configuration
The purpose of AAA configuration is to provide network access services to legal users
and at the same time protect your network device against unauthorized access. If you
need to use ISP domains to implement AAA management on access users, you should
first configure ISP domains.
1.3.1 Configuration Prerequisites
If you want to adopt remote AAA method, you must first create a RADIUS or
HWTACACS scheme.
z RADIUS scheme (radius-scheme): You can reference a configured RADIUS
scheme to provide AAA services. For the configuration of RADIUS scheme, refer
to section
1.4 "RADIUS Configuration".
z HWTACACS scheme (hwtacacs-scheme): You can reference a configured
HWTACACS scheme to implement AAA services. For the configuration of
HWTACACS scheme, refer to section
1.5 "HWTACACS Configuration".
To Next Page
Loading...
Need help?
General