Operation Manual – AAA-RADIUS-HWTACACS-EAD
H3C S3600 Series Ethernet Switches-Release 1510
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
1-43
II. Network diagram
Authentication Server
IP address: 10.110.91.164
Internet
Sw itc h
Telnet user
Internet
Authentication Server
IP address: 10.110.91.164
Internet
Sw itc h
Authentication server
IP address: 10.110.91.164
Internet
Sw itc h
Telnet user
Internet
Authentication Server
IP address: 10.110.91.164
Internet
Sw itc h
Authentication Server
IP address: 10.110.91.164
Internet
Sw itc h
Telnet user
Internet
Authentication Server
IP address: 10.110.91.164
Internet
Sw itc h
Authentication server
IP address: 10.110.91.164
Internet
Sw itc h
Telnet user
Internet
Figure 1-7 Remote RADIUS authentication of Telnet users
III. Configuration procedure
# Enter system view.
<H3C> system-view
[H3C]
# Adopt AAA authentication for Telnet users.
[H3C] user-interface vty 0 4
[H3C-ui-vty0-4] authentication-mode scheme
[H3C-ui-vty0-4] quit
# Configure an ISP domain.
[H3C] domain cams
[H3C-isp-cams] access-limit enable 10
[H3C-isp-cams] quit
# Configure a RADIUS scheme.
[H3C] radius scheme cams
[H3C-radius-cams] accounting optional
[H3C-radius-cams] primary authentication 10.110.91.164 1812
[H3C-radius-cams] key authentication expert
[H3C-radius-cams] server-type Extended
[H3C-radius-cams] user-name-format with-domain
[H3C-radius-cams] quit
# Associate the ISP domain with the RADIUS scheme.
[H3C] domain cams
[H3C-isp-cams] scheme radius-scheme cams
To Next Page
Loading...
